Cross-Site Scripting Vulnerability in Horde Passwd Module from Horde
CVE-2005-1313

Currently unrated

Key Information:

Vendor

Horde

Status
Vendor
CVE Published:
2 May 2005

What is CVE-2005-1313?

The Horde Passwd module is vulnerable to cross-site scripting due to improper validation in the parent's frame page title, allowing attackers to inject arbitrary web scripts or HTML into pages viewed by unsuspecting users. This vulnerability can lead to unauthorized access, data exposure, and the potential for exploitation in vulnerable applications. Users are encouraged to update to version 2.2.2 or later to mitigate this risk.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.