This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Horde First view 2005-05-02
Product Turba Last view 2005-05-02
Version 1.2.1_rc1 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:horde:turba

Activity : Overall

Related : CVE

  Date Alert Description
4.3 2005-05-02 CVE-2005-1315

Cross-site scripting (XSS) vulnerability in Horde Turba module before 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.

Open Source Vulnerability Database (OSVDB)

id Description
15764 Horde Turba Contact Manager common-footer.inc Parent Frame Page Title XSS

Nessus® Vulnerability Scanner

id Description
2005-04-26 Name: The remote web server contains a PHP script that is prone to a cross- site sc...
File: horde_footer_xss.nasl - Type: ACT_GATHER_INFO
2005-04-26 Name: The remote web server contains a PHP script that is prone to a cross- site sc...
File: horde_turba_footer_xss.nasl - Type: ACT_GATHER_INFO