Cross-site scripting (XSS) vulnerability in view.php in the file viewer in Horde Gollem prior to 1.1.2 allows remote malicious users to inject arbitrary web script or HTML via the file parameter in a view_file action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
horde gollem |
||
horde gollem 1.1 |
||
horde gollem 1.0 |
||
horde gollem 1.0.2 |
||
horde gollem 1.0.1 |
||
horde gollem 1.0.4 |
||
horde gollem 1.0.3 |