← Back

CVE-2004-0584

nvd nist
Published: Aug 6, 2004Modified: Apr 16, 2026

JSON object

Loading...
6.8
Vector
AV:N/AC:M/Au:N/C:P/I:P/A:P
Exploitability: 8.6 / Impact: 6.4
Source: NVD

Description

Unknown vulnerability in Horde IMP 3.2.3 and earlier, before a "security fix," does not properly validate input, which allows remote attackers to execute arbitrary script as other users via script or HTML in an e-mail message, possibly triggering a cross-site scripting (XSS) vulnerability.

Affected (18)

Products: Horde: Imp
Horde
1 product
Imp
Configuration A
18 vulnerable
Vulnerable SoftwareAffected Versions
Horde
Imp
Version 2.0
Imp
Version 2.2.1
Imp
Version 2.2.2
Imp
Version 2.2.3
Imp
Version 2.2.4
Imp
Version 2.2.5
Imp
Version 2.2.6
Imp
Version 2.2.7
Imp
Version 2.2.8
Imp
Version 2.2
Imp
Version 2.3
Imp
Version 3.0
Imp
Version 3.1.2
Imp
Version 3.1
Imp
Version 3.2.1
Imp
Version 3.2.2
Imp
Version 3.2.3
Imp
Version 3.2

References (10)

Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Patch
Source: cve@mitre.org
Patch
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.