Описание
Unspecified cross-site scripting (XSS) vulnerability in Horde before 2.2.9 allows remote attackers to inject arbitrary web script or HTML via "not properly escaped error messages".
Ссылки
- Patch
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- Patch
- Vendor Advisory
- Patch
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- Patch
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:horde:horde:2.2:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.4_rc1:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.5:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.7:*:*:*:*:*:*:*
cpe:2.3:a:horde:horde:2.2.8:*:*:*:*:*:*:*
EPSS
Процентиль: 79%
0.01316
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
ubuntu
около 20 лет назад
Unspecified cross-site scripting (XSS) vulnerability in Horde before 2.2.9 allows remote attackers to inject arbitrary web script or HTML via "not properly escaped error messages".
debian
около 20 лет назад
Unspecified cross-site scripting (XSS) vulnerability in Horde before 2 ...
github
почти 4 года назад
Unspecified cross-site scripting (XSS) vulnerability in Horde before 2.2.9 allows remote attackers to inject arbitrary web script or HTML via "not properly escaped error messages".
EPSS
Процентиль: 79%
0.01316
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-79