Horde · Turba · CVE-2008-3330
**Name of the Vulnerable Software and Affected Versions**
Horde version 3.2
Turba version 2.2
**Description**
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the contact name.
**Recommendations**
For Horde version 3.2, update to a version that fixes this issue.
For Turba version 2.2, update to a version that fixes this issue.