CVE-2005-1315

Published: May 2, 2005Modified: Apr 16, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Cross-site scripting (XSS) vulnerability in Horde Turba module before 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.

Affected (7)

Products: Horde: Turba

Horde

1 product

Turba

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Horde Turba	Version 1.2.1
Horde Turba	Version 1.2.1_rc1
Horde Turba	Version 1.2.2
Horde Turba	Version 1.2.3
Horde Turba	Version 1.2.3_rc1
Horde Turba	Version 1.2.4
Horde Turba	Version 1.2