4.3

CVE-2005-4242

Multiple cross-site scripting (XSS) vulnerabilities in Horde Turba H3 2.0.4 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the address book and (2) contact data.

Data is provided by the National Vulnerability Database (NVD)
HordeTurba H3 Version <= 2.0.4
HordeTurba H3 Version2.0
HordeTurba H3 Version2.0.1
HordeTurba H3 Version2.0.2
HordeTurba H3 Version2.0.3
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.34% 0.534
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:P/A:N