Unrated severityNVD Advisory· Published Jan 21, 2009· Updated Jun 16, 2026
CVE-2008-5917
CVE-2008-5917
Description
Cross-site scripting (XSS) vulnerability in the XSS filter (framework/Text_Filter/Filter/xss.php) in Horde Application Framework 3.2.2 and 3.3, when Internet Explorer is being used, allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to style attributes.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:horde:application_framework:3.2.2:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:horde:application_framework:3.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:horde:application_framework:3.3:*:*:*:*:*:*:*
- (no CPE)range: 3.2.2 and 3.3
Patches
Vulnerability mechanics
References
6- cvs.horde.org/diff.php/framework/Text_Filter/Filter/xss.phpnvdExploit
- lists.horde.org/archives/announce/2008/000462.htmlnvdVendor Advisory
- lists.horde.org/archives/announce/2008/000464.htmlnvdVendor Advisory
- lists.opensuse.org/opensuse-security-announce/2009-03/msg00004.htmlnvd
- secunia.com/advisories/34418nvd
- secunia.com/advisories/34609nvd
News mentions
0No linked articles in our index yet.