CVE-2005-3759

Multiple cross-site scripting (XSS) vulnerabilities in Horde before 3.0.7 allow remote attackers to inject arbitrary web script or HTML via the (1) gzip/tar and (2) css MIME viewers, which do not filter or escape dangerous HTML when extracting and displaying attachments.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:horde:horde:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:1.2.5:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.9:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:3.0:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:3.0.6:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:3.0.7:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.1:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.7:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:1.2.8:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:1.2:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:1.2.6:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.0:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:3.0.4_rc2:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.8:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:3.0.4_rc1:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.4_rc1:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:1.2.7:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.5:*:*:*:*:*:*:*

Information

Published : 2005-11-22 13:03

Updated : 2018-10-19 08:39


NVD link : CVE-2005-3759

Mitre link : CVE-2005-3759


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

horde

  • horde