Vulnerability CVE-2009-3237

Vulnerability CVE-2009-3237

Published: 2009-09-17 Modified: 2012-02-13

Description:

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Horde -> Groupware
Horde -> Horde application framework
Horde -> Horde groupware

http://marc.info/?l=horde-announce&m=125295852706029&w=2

http://marc.info/?l=horde-announce&m=125294558611682&w=2

http://marc.info/?l=horde-announce&m=125292339907481&w=2

http://marc.info/?l=horde-announce&m=125292314007049&w=2

http://marc.info/?l=horde-announce&m=125292088004087&w=2

http://marc.info/?l=horde-announce&m=125291625030436&w=2

http://xforce.iss.net/xforce/xfdb/53202

http://www.osvdb.org/58109

http://www.osvdb.org/58108

http://secunia.com/advisories/36665

http://bugs.horde.org/ticket/?id=8399

http://bugs.horde.org/ticket/?id=8311