9 matches found
CVE-2008-3824
Cross-site scripting XSS vulnerability in 1 TextFilter/Filter/xss.php in Horde 3.1.x before 3.1.9 and 3.2.x before 3.2.2 and 2 externalinput.php in Popoon r22196 and earlier allows remote attackers to inject arbitrary web script or HTML by using / slash characters as replacements for spaces in an...
Fedora 12 : horde-3.3.6-1.fc12 (2010-5520)
Upgrade to 3.3.6 - Fixes a lot of security bugs Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora 13 : horde-3.3.6-1.fc13 (2010-5563)
Upgrade to 3.3.6 - Fixes a lot of security bugs Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora 11 : horde-3.3.6-1.fc11 (2010-5483)
Upgrade to 3.3.6 - Fixes a lot of security bugs Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora Update for horde FEDORA-2010-5483
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
openSUSE Security Update : horde (horde-311)
This update of horde fixes the following vulnerabilities : - CVE-2008-1284: directory traversal allows authenticated user to access and execute arbitrary files - CVE-2008-3330: remotely exploitable XSS - CVE-2008-3824: remotely exploitable XSS %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
CVE-2008-3824
Cross-site scripting XSS vulnerability in 1 TextFilter/Filter/xss.php in Horde 3.1.x before 3.1.9 and 3.2.x before 3.2.2 and 2 externalinput.php in Popoon r22196 and earlier allows remote attackers to inject arbitrary web script or HTML by using / slash characters as replacements for spaces in an...
CVE-2008-3824
CVE-2008-3824 affects Horde 3.1.x before 3.1.9 and 3.2.x before 3.2.2, and Popoon (externalinput.php in Popoon r22196 and earlier). It is a cross-site scripting (XSS) vulnerability allowing remote attackers to inject arbitrary web script or HTML by using / characters as replacements for spaces in...
[oCERT-2008-012] Horde, Popoon frameworks common input sanitization errors (XSS)
2008-012 Horde, Popoon frameworks common input sanitization errors XSS Two cross-site scripting XSS vulnerabilities were reported in Horde Framework. The first of which is that the Horde framework fails to properly sanitize the filename of MIME attachments on received emails. The second...