CyberSec.Space Logo
CVEブラウザに戻る

CVE-2005-1322

MEDIUM
4.3
CVSS Severity Score
EPSS Score0.1360%
EPSS Percentile3.16th
Published2005年5月2日
Last Modified2026年4月16日

Vulnerability Description

Cross-site scripting (XSS) vulnerability in Horde Nag Task List Manager before 1.1.3 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.

Affected Platforms (CPE)

📦
Horde

Nag

= 1.1.1
📦
Horde

Nag

= 1.1.2

References & Advisories

🔗 http://cvs.horde.org/diff.php/nag/docs/CHANGES?r1=1.54.2.33&r2=1.54.2.35&ty=h
🔗 http://lists.horde.org/archives/nag/Week-of-Mon-20050418/000756.html
🔗 http://secunia.com/advisories/15079
🔗 http://cvs.horde.org/diff.php/nag/docs/CHANGES?r1=1.54.2.33&r2=1.54.2.35&ty=h
🔗 http://lists.horde.org/archives/nag/Week-of-Mon-20050418/000756.html
🔗 http://secunia.com/advisories/15079

関連する脆弱性情報

CVE-2008-721810.0

Unspecified vulnerability in the Horde API in Horde 3.1 before 3.1.6 and 3.2 before 3.2 before 3.2-RC2; Turba H3 2.1 before 2.1.6 ...

CVE-2008-721910.0

Horde Kronolith H3 2.1 before 2.1.7 and 2.2 before 2.2-RC2; Nag H3 2.1 before 2.1.4 and 2.2 before 2.2-RC2; Mnemo H3 2.1 before 2....

CVE-2005-41903.5

Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework before 3.0.8 allow remote authenticated users t...

CVE-2005-41913.5

Multiple cross-site scripting (XSS) vulnerabilities in templates/tasklists/tasklists.inc in Horde Nag Task List Manager H3 before ...