Lucene search
Ubuntu.comUB:CVE-2007-1473HistoryMar 16, 2007 - 12:00 a.m.
CVE-2007-1473
2007-03-1600:00:00
ubuntu.com
ubuntu.com
8
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.016
Percentile
87.4%
Cross-site scripting (XSS) vulnerability in framework/NLS/NLS.php in Horde
Framework before 3.1.4 RC1, when the login page contains a language
selection box, allows remote attackers to inject arbitrary web script or
HTML via the new_lang parameter to login.php.
Related
nessus
nessus
SuSE9 Security Update : horde (YOU Patch Number 11488)
2009-09-24 00:00:00
Horde NLS.php Language Selection new_lang Parameter XSS
2007-03-16 00:00:00
openSUSE 10 Security Update : horde (horde-3089)
2007-10-17 00:00:00
cvelist
cvelist
CVE-2007-1473
2007-03-16 21:00:00
nvd
nvd
CVE-2007-1473
2007-03-16 21:19:00
cve
cve
CVE-2007-1473
2007-03-16 21:19:00
prion
prion
Cross site scripting
2007-03-16 21:19:00
openvas
openvas
SLES9: Security update for horde
2009-10-10 00:00:00
SLES9: Security update for horde
2009-10-10 00:00:00
Debian Security Advisory DSA 1406-1 (horde3)
2008-01-17 00:00:00
exploitdb
exploitdb
Horde Framework 3.1.3 - 'login.php' Cross-Site Scripting
2007-03-15 00:00:00
osv
osv
horde3 - several vulnerabilities
2007-11-09 00:00:00
securityvulns
securityvulns
debian
debian
[SECURITY] [DSA 1406-1] New horde3 packages fix several vulnerabilities
2007-11-09 22:47:35
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.016
Percentile
87.4%
Related for UB:CVE-2007-1473