CyberSec.Space Logo
Back to CVE Browser

CVE-2005-1322

MEDIUM
4.3
CVSS Severity Score
EPSS Score0.1360%
EPSS Percentile3.16th
PublishedMay 2, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Cross-site scripting (XSS) vulnerability in Horde Nag Task List Manager before 1.1.3 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.

Affected Platforms (CPE)

πŸ“¦
Horde

Nag

= 1.1.1
πŸ“¦
Horde

Nag

= 1.1.2

References & Advisories

πŸ”— http://cvs.horde.org/diff.php/nag/docs/CHANGES?r1=1.54.2.33&r2=1.54.2.35&ty=h
πŸ”— http://lists.horde.org/archives/nag/Week-of-Mon-20050418/000756.html
πŸ”— http://secunia.com/advisories/15079
πŸ”— http://cvs.horde.org/diff.php/nag/docs/CHANGES?r1=1.54.2.33&r2=1.54.2.35&ty=h
πŸ”— http://lists.horde.org/archives/nag/Week-of-Mon-20050418/000756.html
πŸ”— http://secunia.com/advisories/15079

Related Vulnerabilities

CVE-2008-721810.0

Unspecified vulnerability in the Horde API in Horde 3.1 before 3.1.6 and 3.2 before 3.2 before 3.2-RC2; Turba H3 2.1 before 2.1.6 ...

CVE-2008-721910.0

Horde Kronolith H3 2.1 before 2.1.7 and 2.2 before 2.2-RC2; Nag H3 2.1 before 2.1.4 and 2.2 before 2.2-RC2; Mnemo H3 2.1 before 2....

CVE-2005-41903.5

Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework before 3.0.8 allow remote authenticated users t...

CVE-2005-41913.5

Multiple cross-site scripting (XSS) vulnerabilities in templates/tasklists/tasklists.inc in Horde Nag Task List Manager H3 before ...