PT-2008-5020 · Horde · Horde Groupware Webmail
Jan Schneider
·
Publicado
2008-08-13
·
Atualizado
2017-08-08
·
CVE-2008-3650
CVSS v2.0
9.0
Alta
| Vetor | AV:N/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Horde Groupware Webmail versions prior to Edition 1.1.1 (final)
Description
The issue is related to unescaped output, possibly leading to cross-site scripting (XSS) in the object browser and contact view.
Recommendations
For versions prior to Edition 1.1.1 (final), update to Edition 1.1.1 (final) or later to resolve the issue.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Horde Groupware Webmail