Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in imp/test.php in Horde Turba Contact Manager H3 2.2.1 and other versions before 2.3.1, and possibly other Horde Project products, allows remote attackers to inject arbitrary web script or HTML via the User field in an IMAP session.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Horde Turba Contact Manager '/imp/test.php' 跨站脚本攻击漏洞
Vulnerability Description
Horde Turba Contact Manager H3 2.2.1 和2.3.1之前版本,以及Horde Project的其他可能产品的imp/test.php中存在跨站脚本攻击漏洞。远程攻击者可以通过一个IMAP会话中的用户字段来执行任意web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A