Web application vulnerabilities in Horde Kronolith H4 by Horde
CVE-2012-6620

Currently unrated

Key Information:

Vendor

Horde

Vendor
CVE Published:
16 January 2014

What is CVE-2012-6620?

Certain versions of Horde Kronolith H4, specifically before 3.0.17, are susceptible to multiple cross-site scripting (XSS) vulnerabilities. These flaws exist within the tasks and search views, enabling remote attackers to inject arbitrary web scripts or HTML through unspecified vectors. Successful exploitation of these vulnerabilities could lead to unauthorized access and compromise of user data.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.