Cross-site Scripting Vulnerability in Horde Groupware and Horde Web Applications
CVE-2009-0931
Currently unrated
Summary
A cross-site scripting (XSS) vulnerability exists in the tag cloud search script of Horde, allowing remote attackers to inject arbitrary web scripts or HTML through unspecified vectors. This issue affects multiple versions of Horde and Horde Groupware, emphasizing the importance of upgrading to secure versions to mitigate potential exploitation risks.
References
Timeline
Vulnerability Reserved
Vulnerability published