Multiple cross-site scripting (XSS) vulnerabilities in Horde 3.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) group parameter to prefs.php or (2) url parameter to index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
horde horde 3.0 |