CVE-2005-1319

Published: May 2, 2005Modified: Apr 16, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Cross-site scripting (XSS) vulnerability in Horde IMP Webmail client before 3.2.8 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.

Affected (7)

Products: Horde: Imp

Horde

1 product

Imp

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Horde Imp	Up to 3.2.2
Horde Imp	Version 3.2.3
Horde Imp	Version 3.2.4
Horde Imp	Version 3.2.5
Horde Imp	Version 3.2.6
Horde Imp	Version 3.2.7
Horde Imp	Version 3.2.7_rc1