CVE Vulnerabilities

CVE-2001-1257

Published: Jul 21, 2001 | Modified: Mar 08, 2011
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Cross-site scripting vulnerability in Horde Internet Messaging Program (IMP) before 2.2.6 and 1.2.6 allows remote attackers to execute arbitrary Javascript embedded in an email.

Affected Software

Name Vendor Start Version End Version
Imp Horde 2.0 2.0
Imp Horde 2.2 2.2
Imp Horde 2.2.1 2.2.1
Imp Horde 2.2.2 2.2.2
Imp Horde 2.2.3 2.2.3
Imp Horde 2.2.4 2.2.4
Imp Horde 2.2.5 2.2.5

References