Cross-Site Scripting Vulnerability in Horde Internet Messaging Program
CVE-2001-1257
Currently unrated
What is CVE-2001-1257?
A Cross-Site Scripting vulnerability exists in the Horde Internet Messaging Program (IMP) prior to versions 2.2.6 and 1.2.6, allowing remote attackers to inject and execute arbitrary JavaScript code embedded in emails. This could lead to unauthorized access to user data and manipulation of user sessions, posing significant risks to users and their sensitive information.
