Cross-site scripting (XSS) vulnerability in Horde Kronolith module before 1.1.4 allows remote attackers to inject arbitrary web script or HTML via the parents frame page title.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Kronolith |
Horde |
1.1.3 (including) |
1.1.3 (including) |
References