|
|
Horde Products GETURL Parameter Cross-Site Scripting Vulnerability
|
Bugtraq ID:
|
19557
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Aug 16 2006 12:00AM
|
|
Updated:
|
Aug 17 2006 06:35PM
|
|
Credit:
|
Marc Ruef is credited with the discovery of this vulnerability.
|
|
Vulnerable:
|
Horde IMP 4.0.4
Horde IMP 4.0.3
Horde IMP 4.0.2
Horde IMP 4.0.1
Horde IMP 4.0
Horde IMP 3.2.5
Horde IMP 3.2.4
Horde IMP 3.2.3
Horde IMP 3.2.2
Horde IMP 3.2.1
Horde IMP 3.2
Horde IMP 3.1.2
Horde IMP 3.1
Horde IMP 3.0
Horde IMP 2.3
Horde IMP 2.2.8
+
Conectiva Linux 8.0
+
Conectiva Linux 7.0
+
Horde Horde 1.2.8
Horde IMP 2.2.7
-
Caldera OpenLinux Server 3.1.1
-
Caldera OpenLinux Server 3.1
-
Conectiva Linux 7.0
-
Conectiva Linux 6.0
-
Conectiva Linux 5.1
-
Conectiva Linux 5.0
+
Horde Horde 1.2.7
Horde IMP 2.2.6
-
Conectiva Linux 7.0
-
Conectiva Linux 6.0
-
Conectiva Linux 5.1
-
Conectiva Linux 5.0
-
Debian Linux 2.2
+
Horde Horde 1.2.6
Horde IMP 2.2.5
+
Caldera OpenLinux Server 3.1
-
Conectiva Linux 7.0
-
Conectiva Linux 6.0
-
Conectiva Linux 5.1
-
Conectiva Linux 5.0
+
Horde Horde 1.2.5
Horde IMP 2.2.4
+
Caldera OpenLinux Server 3.1
+
Horde Horde 1.2.4
Horde IMP 2.2.3
+
Horde Horde 1.2.3
Horde IMP 2.2.2
+
Horde Horde 1.2.2
Horde IMP 2.2.1
+
Horde Horde 1.2.1
Horde IMP 2.2
+
Horde Horde 1.2
Horde IMP 2.0
-
PHP PHP 4.0.1 pl2
-
PHP PHP 4.0.1
-
PHP PHP 4.0 0
-
PHP PHP 3.0.16
Horde Horde 3.1.1
Horde Horde 3.0.9
Horde Horde 3.0.8
Horde Horde 3.0.7
Horde Horde 3.0.6
Horde Horde 3.0.4 -RC 2
Horde Horde 3.0.4 -RC 1
Horde Horde 3.0.4
Horde Horde 3.0.3
Horde Horde 3.0.2
Horde Horde 3.0.1
Horde Horde 3.0
Horde Horde 3.1
|
|
|
|
Not Vulnerable:
|
Horde Horde IMP 4.1.3
Horde Horde 3.1.2
|
|
|
