CVE-2006-4255

Cross-site scripting XSS vulnerability in horde/imp/search.php in Horde IMP H3 before 4.1.3 allows remote attackers to include arbitrary web script or HTML via multiple unspecified vectors related to folder names, as injected into the vfolderlabel form field in the IMP search screen...

PT-2006-5066 · Horde · Horde Imp H3

Name of the Vulnerable Software and Affected Versions: Horde IMP H3 versions prior to 4.1.3 Description: A cross-site scripting XSS issue allows remote attackers to include arbitrary web script or HTML via multiple unspecified vectors related to folder names, as injected into the vfolder label fo...