Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Gentoo: GLSA-200606-28 Low: Horde XSS Threat in Web Framework

gentoo
Calendar Grey June 29, 2006
Dist Gentoo Esm H88
CSRF exploit found in Django Framework raises concerns over data integrity. Immediate patches recommended for Ubuntu contact.
The Horde Web Application Framework is vulnerable to a cross-site scripting vulnerability.

Summary

Gentoo Linux Security Advisory GLSA 200606-28 https://security.gentoo.org/ Severity: Low Title: Horde Web Application Framework: XSS vulnerability Date: June 29, 2006 Bugs: #136830 ID: 200606-28

Synopsis ======= The Horde Web Application Framework is vulnerable to a cross-site scripting vulnerability.
Background ========= The Horde Web Application Framework is a general-purpose web application framework written in PHP, providing classes for handling preferences, compression, browser detection, connection tracking, MIME, and more.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-apps/horde < 3.1.1-r1 >= 3.1.1-r1
========== Michael Marek discovered that th...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo web application low severity horde xss risk malicious script

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Severity
low
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory gentoo web application low severity horde xss risk malicious script

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here