Cross-site Scripting Vulnerability in Horde IMP Webmail Client
CVE-2005-1319

Currently unrated

Key Information:

Vendor

Horde

Status
Vendor
CVE Published:
2 May 2005

What is CVE-2005-1319?

The vulnerability in Horde IMP Webmail client allows remote attackers to inject arbitrary scripts or HTML content into the web application. This can occur via the page title of a parent frame, significantly compromising user interaction and security. Attackers exploiting this weakness could potentially hijack user sessions, redirect users to malicious websites, or display unwanted content, emphasizing the importance of updating to versions beyond 3.2.8 for enhanced security.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.