9
CVE-2008-3650
- EPSS 1.02%
- Veröffentlicht 13.08.2008 01:41:00
- Zuletzt bearbeitet 16.06.2026 22:56:13
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Multiple unspecified vulnerabilities in Horde Groupware Webmail before Edition 1.1.1 (final) have unknown impact and attack vectors related to "unescaped output," possibly cross-site scripting (XSS), in the (1) object browser and (2) contact view.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Horde ≫ Groupware Webmail Edition Version1.0
Horde ≫ Groupware Webmail Edition Version1.0.1
Horde ≫ Groupware Webmail Edition Version1.0.2
Horde ≫ Groupware Webmail Edition Version1.0.3
Horde ≫ Groupware Webmail Edition Version1.0.4
Horde ≫ Groupware Webmail Edition Version1.0.5
Horde ≫ Groupware Webmail Edition Version1.0.6
Horde ≫ Groupware Webmail Edition Version1.0.7
Horde ≫ Groupware Webmail Edition Version1.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.02% | 0.589 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9 | 8 | 10 |
AV:N/AC:L/Au:S/C:C/I:C/A:C
|
http://lists.horde.org/archives/announce/2008/000420.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/44479