CVE Vulnerabilities

CVE-2005-4242

Published: Dec 14, 2005 | Modified: Mar 08, 2011
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Multiple cross-site scripting (XSS) vulnerabilities in Horde Turba H3 2.0.4 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the address book and (2) contact data.

Affected Software

Name Vendor Start Version End Version
Turba_h3 Horde 2.0.2 2.0.2
Turba_h3 Horde 2.0.1 2.0.1
Turba_h3 Horde 2.0 2.0
Turba_h3 Horde * 2.0.4
Turba_h3 Horde 2.0.3 2.0.3

References