Search
Find a vulnerability
Search criteria
4 vulnerabilities found for passwd by horde
CVE-2009-2360 (GCVE-0-2009-2360)
Vulnerability from nvd – Published: 2009-07-08 15:00 – Updated: 2024-08-07 05:44
VLAI
Summary
Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
8 references
| URL | Tags |
|---|---|
| http://bugs.horde.org/ticket/8398 | x_refsource_CONFIRM |
| http://www.vupen.com/english/advisories/2009/1784 | vdb-entryx_refsource_VUPEN |
| http://secunia.com/advisories/35769 | third-party-advisoryx_refsource_SECUNIA |
| http://secunia.com/advisories/35720 | third-party-advisoryx_refsource_SECUNIA |
| http://www.securityfocus.com/bid/35573 | vdb-entryx_refsource_BID |
| http://www.debian.org/security/2009/dsa-1829 | vendor-advisoryx_refsource_DEBIAN |
| http://lists.horde.org/archives/announce/2009/000… | mailing-listx_refsource_MLIST |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
Date Public
2009-07-05 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T05:44:56.087Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bugs.horde.org/ticket/8398"
},
{
"name": "ADV-2009-1784",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2009/1784"
},
{
"name": "35769",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/35769"
},
{
"name": "35720",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/35720"
},
{
"name": "35573",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/35573"
},
{
"name": "DSA-1829",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2009/dsa-1829"
},
{
"name": "[announce] 20090705 Passwd H3 (3.1.1) (final)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://lists.horde.org/archives/announce/2009/000507.html"
},
{
"name": "passwd-main-xss(51542)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/51542"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2009-07-05T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-16T14:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bugs.horde.org/ticket/8398"
},
{
"name": "ADV-2009-1784",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2009/1784"
},
{
"name": "35769",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/35769"
},
{
"name": "35720",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/35720"
},
{
"name": "35573",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/35573"
},
{
"name": "DSA-1829",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2009/dsa-1829"
},
{
"name": "[announce] 20090705 Passwd H3 (3.1.1) (final)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://lists.horde.org/archives/announce/2009/000507.html"
},
{
"name": "passwd-main-xss(51542)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/51542"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2009-2360",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://bugs.horde.org/ticket/8398",
"refsource": "CONFIRM",
"url": "http://bugs.horde.org/ticket/8398"
},
{
"name": "ADV-2009-1784",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2009/1784"
},
{
"name": "35769",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35769"
},
{
"name": "35720",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35720"
},
{
"name": "35573",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/35573"
},
{
"name": "DSA-1829",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2009/dsa-1829"
},
{
"name": "[announce] 20090705 Passwd H3 (3.1.1) (final)",
"refsource": "MLIST",
"url": "http://lists.horde.org/archives/announce/2009/000507.html"
},
{
"name": "passwd-main-xss(51542)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/51542"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2009-2360",
"datePublished": "2009-07-08T15:00:00.000Z",
"dateReserved": "2009-07-08T00:00:00.000Z",
"dateUpdated": "2024-08-07T05:44:56.087Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2005-1313 (GCVE-0-2005-1313)
Vulnerability from nvd – Published: 2005-04-27 04:00 – Updated: 2024-08-07 21:44
VLAI
Summary
Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
3 references
| URL | Tags |
|---|---|
| http://secunia.com/advisories/15075 | third-party-advisoryx_refsource_SECUNIA |
| http://lists.horde.org/archives/sork/Week-of-Mon-… | mailing-listx_refsource_MLIST |
| http://cvs.horde.org/diff.php/passwd/docs/CHANGES… | x_refsource_CONFIRM |
Date Public
2005-04-22 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T21:44:06.188Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "15075",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/15075"
},
{
"name": "[sork] 20050422 Passwd 2.2.2 (final)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://lists.horde.org/archives/sork/Week-of-Mon-20050418/002147.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2005-04-22T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent\u0027s frame page title."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-06-15T16:37:41.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "15075",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/15075"
},
{
"name": "[sork] 20050422 Passwd 2.2.2 (final)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://lists.horde.org/archives/sork/Week-of-Mon-20050418/002147.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2005-1313",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent\u0027s frame page title."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "15075",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/15075"
},
{
"name": "[sork] 20050422 Passwd 2.2.2 (final)",
"refsource": "MLIST",
"url": "http://lists.horde.org/archives/sork/Week-of-Mon-20050418/002147.html"
},
{
"name": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h",
"refsource": "CONFIRM",
"url": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2005-1313",
"datePublished": "2005-04-27T04:00:00.000Z",
"dateReserved": "2005-04-27T00:00:00.000Z",
"dateUpdated": "2024-08-07T21:44:06.188Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2009-2360 (GCVE-0-2009-2360)
Vulnerability from cvelistv5 – Published: 2009-07-08 15:00 – Updated: 2024-08-07 05:44
VLAI
Summary
Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
8 references
| URL | Tags |
|---|---|
| http://bugs.horde.org/ticket/8398 | x_refsource_CONFIRM |
| http://www.vupen.com/english/advisories/2009/1784 | vdb-entryx_refsource_VUPEN |
| http://secunia.com/advisories/35769 | third-party-advisoryx_refsource_SECUNIA |
| http://secunia.com/advisories/35720 | third-party-advisoryx_refsource_SECUNIA |
| http://www.securityfocus.com/bid/35573 | vdb-entryx_refsource_BID |
| http://www.debian.org/security/2009/dsa-1829 | vendor-advisoryx_refsource_DEBIAN |
| http://lists.horde.org/archives/announce/2009/000… | mailing-listx_refsource_MLIST |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
Date Public
2009-07-05 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T05:44:56.087Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bugs.horde.org/ticket/8398"
},
{
"name": "ADV-2009-1784",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2009/1784"
},
{
"name": "35769",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/35769"
},
{
"name": "35720",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/35720"
},
{
"name": "35573",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/35573"
},
{
"name": "DSA-1829",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2009/dsa-1829"
},
{
"name": "[announce] 20090705 Passwd H3 (3.1.1) (final)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://lists.horde.org/archives/announce/2009/000507.html"
},
{
"name": "passwd-main-xss(51542)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/51542"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2009-07-05T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-16T14:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bugs.horde.org/ticket/8398"
},
{
"name": "ADV-2009-1784",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2009/1784"
},
{
"name": "35769",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/35769"
},
{
"name": "35720",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/35720"
},
{
"name": "35573",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/35573"
},
{
"name": "DSA-1829",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2009/dsa-1829"
},
{
"name": "[announce] 20090705 Passwd H3 (3.1.1) (final)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://lists.horde.org/archives/announce/2009/000507.html"
},
{
"name": "passwd-main-xss(51542)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/51542"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2009-2360",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://bugs.horde.org/ticket/8398",
"refsource": "CONFIRM",
"url": "http://bugs.horde.org/ticket/8398"
},
{
"name": "ADV-2009-1784",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2009/1784"
},
{
"name": "35769",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35769"
},
{
"name": "35720",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35720"
},
{
"name": "35573",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/35573"
},
{
"name": "DSA-1829",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2009/dsa-1829"
},
{
"name": "[announce] 20090705 Passwd H3 (3.1.1) (final)",
"refsource": "MLIST",
"url": "http://lists.horde.org/archives/announce/2009/000507.html"
},
{
"name": "passwd-main-xss(51542)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/51542"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2009-2360",
"datePublished": "2009-07-08T15:00:00.000Z",
"dateReserved": "2009-07-08T00:00:00.000Z",
"dateUpdated": "2024-08-07T05:44:56.087Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2005-1313 (GCVE-0-2005-1313)
Vulnerability from cvelistv5 – Published: 2005-04-27 04:00 – Updated: 2024-08-07 21:44
VLAI
Summary
Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
3 references
| URL | Tags |
|---|---|
| http://secunia.com/advisories/15075 | third-party-advisoryx_refsource_SECUNIA |
| http://lists.horde.org/archives/sork/Week-of-Mon-… | mailing-listx_refsource_MLIST |
| http://cvs.horde.org/diff.php/passwd/docs/CHANGES… | x_refsource_CONFIRM |
Date Public
2005-04-22 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T21:44:06.188Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "15075",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/15075"
},
{
"name": "[sork] 20050422 Passwd 2.2.2 (final)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://lists.horde.org/archives/sork/Week-of-Mon-20050418/002147.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2005-04-22T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent\u0027s frame page title."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-06-15T16:37:41.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "15075",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/15075"
},
{
"name": "[sork] 20050422 Passwd 2.2.2 (final)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://lists.horde.org/archives/sork/Week-of-Mon-20050418/002147.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2005-1313",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent\u0027s frame page title."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "15075",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/15075"
},
{
"name": "[sork] 20050422 Passwd 2.2.2 (final)",
"refsource": "MLIST",
"url": "http://lists.horde.org/archives/sork/Week-of-Mon-20050418/002147.html"
},
{
"name": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h",
"refsource": "CONFIRM",
"url": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2005-1313",
"datePublished": "2005-04-27T04:00:00.000Z",
"dateReserved": "2005-04-27T00:00:00.000Z",
"dateUpdated": "2024-08-07T21:44:06.188Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}