Search

Find a vulnerability

Search criteria

    4 vulnerabilities found for passwd by horde

    CVE-2009-2360 (GCVE-0-2009-2360)

    Vulnerability from nvd – Published: 2009-07-08 15:00 – Updated: 2024-08-07 05:44
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://bugs.horde.org/ticket/8398 x_refsource_CONFIRM
    http://www.vupen.com/english/advisories/2009/1784 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/35769 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/35720 third-party-advisoryx_refsource_SECUNIA
    http://www.securityfocus.com/bid/35573 vdb-entryx_refsource_BID
    http://www.debian.org/security/2009/dsa-1829 vendor-advisoryx_refsource_DEBIAN
    http://lists.horde.org/archives/announce/2009/000… mailing-listx_refsource_MLIST
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    Date Public
    2009-07-05 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T05:44:56.087Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://bugs.horde.org/ticket/8398"
              },
              {
                "name": "ADV-2009-1784",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2009/1784"
              },
              {
                "name": "35769",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/35769"
              },
              {
                "name": "35720",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/35720"
              },
              {
                "name": "35573",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/35573"
              },
              {
                "name": "DSA-1829",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2009/dsa-1829"
              },
              {
                "name": "[announce] 20090705 Passwd H3 (3.1.1) (final)",
                "tags": [
                  "mailing-list",
                  "x_refsource_MLIST",
                  "x_transferred"
                ],
                "url": "http://lists.horde.org/archives/announce/2009/000507.html"
              },
              {
                "name": "passwd-main-xss(51542)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/51542"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2009-07-05T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://bugs.horde.org/ticket/8398"
            },
            {
              "name": "ADV-2009-1784",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2009/1784"
            },
            {
              "name": "35769",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/35769"
            },
            {
              "name": "35720",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/35720"
            },
            {
              "name": "35573",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/35573"
            },
            {
              "name": "DSA-1829",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2009/dsa-1829"
            },
            {
              "name": "[announce] 20090705 Passwd H3 (3.1.1) (final)",
              "tags": [
                "mailing-list",
                "x_refsource_MLIST"
              ],
              "url": "http://lists.horde.org/archives/announce/2009/000507.html"
            },
            {
              "name": "passwd-main-xss(51542)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/51542"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2009-2360",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://bugs.horde.org/ticket/8398",
                  "refsource": "CONFIRM",
                  "url": "http://bugs.horde.org/ticket/8398"
                },
                {
                  "name": "ADV-2009-1784",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2009/1784"
                },
                {
                  "name": "35769",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/35769"
                },
                {
                  "name": "35720",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/35720"
                },
                {
                  "name": "35573",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/35573"
                },
                {
                  "name": "DSA-1829",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2009/dsa-1829"
                },
                {
                  "name": "[announce] 20090705 Passwd H3 (3.1.1) (final)",
                  "refsource": "MLIST",
                  "url": "http://lists.horde.org/archives/announce/2009/000507.html"
                },
                {
                  "name": "passwd-main-xss(51542)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/51542"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2009-2360",
        "datePublished": "2009-07-08T15:00:00.000Z",
        "dateReserved": "2009-07-08T00:00:00.000Z",
        "dateUpdated": "2024-08-07T05:44:56.087Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2005-1313 (GCVE-0-2005-1313)

    Vulnerability from nvd – Published: 2005-04-27 04:00 – Updated: 2024-08-07 21:44
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/15075 third-party-advisoryx_refsource_SECUNIA
    http://lists.horde.org/archives/sork/Week-of-Mon-… mailing-listx_refsource_MLIST
    http://cvs.horde.org/diff.php/passwd/docs/CHANGES… x_refsource_CONFIRM
    Date Public
    2005-04-22 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T21:44:06.188Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "15075",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/15075"
              },
              {
                "name": "[sork] 20050422 Passwd 2.2.2 (final)",
                "tags": [
                  "mailing-list",
                  "x_refsource_MLIST",
                  "x_transferred"
                ],
                "url": "http://lists.horde.org/archives/sork/Week-of-Mon-20050418/002147.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2005-04-22T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent\u0027s frame page title."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-06-15T16:37:41.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "15075",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/15075"
            },
            {
              "name": "[sork] 20050422 Passwd 2.2.2 (final)",
              "tags": [
                "mailing-list",
                "x_refsource_MLIST"
              ],
              "url": "http://lists.horde.org/archives/sork/Week-of-Mon-20050418/002147.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2005-1313",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent\u0027s frame page title."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "15075",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/15075"
                },
                {
                  "name": "[sork] 20050422 Passwd 2.2.2 (final)",
                  "refsource": "MLIST",
                  "url": "http://lists.horde.org/archives/sork/Week-of-Mon-20050418/002147.html"
                },
                {
                  "name": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h",
                  "refsource": "CONFIRM",
                  "url": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2005-1313",
        "datePublished": "2005-04-27T04:00:00.000Z",
        "dateReserved": "2005-04-27T00:00:00.000Z",
        "dateUpdated": "2024-08-07T21:44:06.188Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2009-2360 (GCVE-0-2009-2360)

    Vulnerability from cvelistv5 – Published: 2009-07-08 15:00 – Updated: 2024-08-07 05:44
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://bugs.horde.org/ticket/8398 x_refsource_CONFIRM
    http://www.vupen.com/english/advisories/2009/1784 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/35769 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/35720 third-party-advisoryx_refsource_SECUNIA
    http://www.securityfocus.com/bid/35573 vdb-entryx_refsource_BID
    http://www.debian.org/security/2009/dsa-1829 vendor-advisoryx_refsource_DEBIAN
    http://lists.horde.org/archives/announce/2009/000… mailing-listx_refsource_MLIST
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    Date Public
    2009-07-05 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T05:44:56.087Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://bugs.horde.org/ticket/8398"
              },
              {
                "name": "ADV-2009-1784",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2009/1784"
              },
              {
                "name": "35769",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/35769"
              },
              {
                "name": "35720",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/35720"
              },
              {
                "name": "35573",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/35573"
              },
              {
                "name": "DSA-1829",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2009/dsa-1829"
              },
              {
                "name": "[announce] 20090705 Passwd H3 (3.1.1) (final)",
                "tags": [
                  "mailing-list",
                  "x_refsource_MLIST",
                  "x_transferred"
                ],
                "url": "http://lists.horde.org/archives/announce/2009/000507.html"
              },
              {
                "name": "passwd-main-xss(51542)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/51542"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2009-07-05T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://bugs.horde.org/ticket/8398"
            },
            {
              "name": "ADV-2009-1784",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2009/1784"
            },
            {
              "name": "35769",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/35769"
            },
            {
              "name": "35720",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/35720"
            },
            {
              "name": "35573",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/35573"
            },
            {
              "name": "DSA-1829",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2009/dsa-1829"
            },
            {
              "name": "[announce] 20090705 Passwd H3 (3.1.1) (final)",
              "tags": [
                "mailing-list",
                "x_refsource_MLIST"
              ],
              "url": "http://lists.horde.org/archives/announce/2009/000507.html"
            },
            {
              "name": "passwd-main-xss(51542)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/51542"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2009-2360",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://bugs.horde.org/ticket/8398",
                  "refsource": "CONFIRM",
                  "url": "http://bugs.horde.org/ticket/8398"
                },
                {
                  "name": "ADV-2009-1784",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2009/1784"
                },
                {
                  "name": "35769",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/35769"
                },
                {
                  "name": "35720",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/35720"
                },
                {
                  "name": "35573",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/35573"
                },
                {
                  "name": "DSA-1829",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2009/dsa-1829"
                },
                {
                  "name": "[announce] 20090705 Passwd H3 (3.1.1) (final)",
                  "refsource": "MLIST",
                  "url": "http://lists.horde.org/archives/announce/2009/000507.html"
                },
                {
                  "name": "passwd-main-xss(51542)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/51542"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2009-2360",
        "datePublished": "2009-07-08T15:00:00.000Z",
        "dateReserved": "2009-07-08T00:00:00.000Z",
        "dateUpdated": "2024-08-07T05:44:56.087Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2005-1313 (GCVE-0-2005-1313)

    Vulnerability from cvelistv5 – Published: 2005-04-27 04:00 – Updated: 2024-08-07 21:44
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/15075 third-party-advisoryx_refsource_SECUNIA
    http://lists.horde.org/archives/sork/Week-of-Mon-… mailing-listx_refsource_MLIST
    http://cvs.horde.org/diff.php/passwd/docs/CHANGES… x_refsource_CONFIRM
    Date Public
    2005-04-22 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T21:44:06.188Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "15075",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/15075"
              },
              {
                "name": "[sork] 20050422 Passwd 2.2.2 (final)",
                "tags": [
                  "mailing-list",
                  "x_refsource_MLIST",
                  "x_transferred"
                ],
                "url": "http://lists.horde.org/archives/sork/Week-of-Mon-20050418/002147.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2005-04-22T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent\u0027s frame page title."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-06-15T16:37:41.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "15075",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/15075"
            },
            {
              "name": "[sork] 20050422 Passwd 2.2.2 (final)",
              "tags": [
                "mailing-list",
                "x_refsource_MLIST"
              ],
              "url": "http://lists.horde.org/archives/sork/Week-of-Mon-20050418/002147.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2005-1313",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent\u0027s frame page title."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "15075",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/15075"
                },
                {
                  "name": "[sork] 20050422 Passwd 2.2.2 (final)",
                  "refsource": "MLIST",
                  "url": "http://lists.horde.org/archives/sork/Week-of-Mon-20050418/002147.html"
                },
                {
                  "name": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h",
                  "refsource": "CONFIRM",
                  "url": "http://cvs.horde.org/diff.php/passwd/docs/CHANGES?r1=1.1.1.1.2.28\u0026r2=1.1.1.1.2.33\u0026ty=h"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2005-1313",
        "datePublished": "2005-04-27T04:00:00.000Z",
        "dateReserved": "2005-04-27T00:00:00.000Z",
        "dateUpdated": "2024-08-07T21:44:06.188Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }