Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework 3.0.0 through 3.0.10 and 3.1.0 through 3.1.1 allow remote attackers to inject arbitrary web script or HTML via a (1) javascript URI or an external (2) http, (3) https, or (4) ftp URI in the url parameter in services/go.php (aka the dereferrer), (5) a javascript URI in the module parameter in services/help (aka the help viewer), and (6) the name parameter in services/problem.php (aka the problem reporting screen).
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Horde | Horde | 3.0 (including) | 3.0 (including) |
| Horde | Horde | 3.0.1 (including) | 3.0.1 (including) |
| Horde | Horde | 3.0.2 (including) | 3.0.2 (including) |
| Horde | Horde | 3.0.3 (including) | 3.0.3 (including) |
| Horde | Horde | 3.0.4 (including) | 3.0.4 (including) |
| Horde | Horde | 3.0.4_rc1 (including) | 3.0.4_rc1 (including) |
| Horde | Horde | 3.0.4_rc2 (including) | 3.0.4_rc2 (including) |
| Horde | Horde | 3.0.6 (including) | 3.0.6 (including) |
| Horde | Horde | 3.0.7 (including) | 3.0.7 (including) |
| Horde | Horde | 3.0.8 (including) | 3.0.8 (including) |
| Horde | Horde | 3.0.9 (including) | 3.0.9 (including) |
| Horde | Horde | 3.1 (including) | 3.1 (including) |
| Horde | Horde | 3.1.1 (including) | 3.1.1 (including) |