Horde · Horde3 · CVE-2006-2195
**Name of the Vulnerable Software and Affected Versions**
horde3 versions prior to 3.1.1
**Description**
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via templates/problem/problem.inc and test.php.
**Recommendations**
For versions prior to 3.1.1, update to version 3.1.1 or later to resolve the issue.