Cross-site scripting (XSS) vulnerability in the tag cloud search script (horde/services/portal/cloud_search.php) in Horde prior to 3.2.4 and 3.3.3, and Horde Groupware prior to 1.1.5, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
debian horde |
||
debian horde 3.3 |
||
debian horde 3.2.3 |
||
debian horde groupware |
||
debian horde 3.2.2 |