NVD

Id
53699  
Name
CVE-2007-1515  
Description
Multiple cross-site scripting (XSS) vulnerabilities in Horde IMP H3 4.1.3, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via (1) the email Subject header in thread.php, (2) the edit_query parameter in search.php, or other unspecified parameters in search.php. NOTE: some of these details are obtained from third party information.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2007-03-20  
Modified Date
2011-03-07  
Seq
2007-1515  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
272080 53699 CVE-2007-1515 20070315 Horde IMP Webmail Client version H3 (4.1.4) fixes multiple XSS issues  View
272081 53699 CVE-2007-1515 [announce] 20070314 IMP H3 (4.1.4) (final)  View
272082 53699 CVE-2007-1515 20070315 Horde IMP Webmail Client version H3 (4.1.4) fixes multiple XSS issues  View
272083 53699 CVE-2007-1515 22975  View
272084 53699 CVE-2007-1515 1017774  View
272085 53699 CVE-2007-1515 ADV-2007-0964  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
54842 JVNDB-2007-003534 Horde IMP におけるクロスサイトスクリプティングの脆弱性 Horde IMP には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2007-1515 24870 CVE-2007-1515 53699 4.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-003534.html 2007-03-14 2012-09-25 View