CVE Vulnerabilities

CVE-2008-3650

Published: Aug 13, 2008 | Modified: Aug 08, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9 HIGH
AV:N/AC:L/Au:S/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Multiple unspecified vulnerabilities in Horde Groupware Webmail before Edition 1.1.1 (final) have unknown impact and attack vectors related to unescaped output, possibly cross-site scripting (XSS), in the (1) object browser and (2) contact view.

Affected Software

Name Vendor Start Version End Version
Groupware_webmail_edition Horde 1.0 1.0
Groupware_webmail_edition Horde 1.0.1 1.0.1
Groupware_webmail_edition Horde 1.0.2 1.0.2
Groupware_webmail_edition Horde 1.0.3 1.0.3
Groupware_webmail_edition Horde 1.0.4 1.0.4
Groupware_webmail_edition Horde 1.0.5 1.0.5
Groupware_webmail_edition Horde 1.0.6 1.0.6
Groupware_webmail_edition Horde 1.0.7 1.0.7
Groupware_webmail_edition Horde 1.1 1.1
Horde3 Ubuntu dapper *
Horde3 Ubuntu hardy *
Horde3 Ubuntu upstream *
Turba2 Ubuntu dapper *
Turba2 Ubuntu upstream *

References