Cross-site scripting (XSS) vulnerability in MIME/MIME/Contents.php in the MIME library in Horde 3.2.x prior to 3.2.2 allows remote malicious users to inject arbitrary web script or HTML via the filename of a MIME attachment in an e-mail message.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
horde horde 3.2 |
||
horde horde 3.2.1 |