NVD

Id
3518  
Name
CVE-2008-3650  
Description
Multiple unspecified vulnerabilities in Horde Groupware Webmail before Edition 1.1.1 (final) have unknown impact and attack vectors related to "unescaped output," possibly cross-site scripting (XSS), in the (1) object browser and (2) contact view.  
Reject
 
CVSS Version
2  
CVSS Score
9  
Severity
High  
CVSS Base Score
9  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:C/I:C/A:C)  
Pub Date
2017-01-03  
Published
2008-08-12  
Modified Date
2008-09-10  
Seq
2008-3650  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
22152 3518 CVE-2008-3650 [horde-announce] 20080614 [announce] Horde Groupware Webmail Edition 1.1.1 (final)  View
22153 3518 CVE-2008-3650 hordegroupwarewebmail-multiple-unspecified(44479)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
49444 JVNDB-2008-004754 Horde Groupware Webmail における脆弱性 Horde Groupware Webmail Edition は、(1) オブジェクトブラウザ、および (2) コンタクトビュー内に "エスケープされてない出力"があり、クロスサイトスクリプティングが発生するため、不特定の影響を受ける脆弱性が存在します。 CVE-2008-3650 33763 CVE-2008-3650 3518 9 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-004754.html 2008-06-04 2012-09-25 View