Cross-site Scripting Vulnerability in Horde Application Framework
CVE-2004-2741

Currently unrated

Key Information:

Vendor

Horde

Vendor
CVE Published:
31 December 2004

What is CVE-2004-2741?

A cross-site scripting (XSS) vulnerability exists in the 'help window' (help.php) of the Horde Application Framework, specifically in version 2.2.6. This vulnerability allows attackers to inject arbitrary web scripts or HTML through the 'module', 'topic', or 'module' parameters, potentially compromising the security of affected systems.

References

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.