[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-1829 sork-passwd-h3 -- insufficient input sanitising

ID: oval:org.mitre.oval:def:8025Date: (C)2009-12-15   (M)2021-06-02
Class: PATCHFamily: unix




It was discovered that sork-passwd-h3, a Horde3 module for users to change their password, is prone to a cross-site scripting attack via the backend parameter.

Platform:
Debian 5.0
Debian 4.0
Product:
sork-passwd-h3
Reference:
DSA-1829
CVE-2009-2360
CVE    1
CVE-2009-2360
CPE    2
cpe:/o:debian:debian_linux:4.0
cpe:/o:debian:debian_linux:5.0

© SecPod Technologies