CVE-2008-5917

Cross-site scripting (XSS) vulnerability in the XSS filter (framework/Text_Filter/Filter/xss.php) in Horde Application Framework 3.2.2 and 3.3, when Internet Explorer is being used, allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to style attributes.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:horde:application_framework:3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:horde:application_framework:3.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2009-01-21 02:30

Updated : 2024-02-04 17:33


NVD link : CVE-2008-5917

Mitre link : CVE-2008-5917

CVE.ORG link : CVE-2008-5917


JSON object : View

Products Affected

microsoft

  • internet_explorer

horde

  • application_framework
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')