Unrated severityNVD Advisory· Published Mar 17, 2009· Updated Jun 16, 2026
CVE-2009-0931
CVE-2009-0931
Description
Cross-site scripting (XSS) vulnerability in the tag cloud search script (horde/services/portal/cloud_search.php) in Horde before 3.2.4 and 3.3.3, and Horde Groupware before 1.1.5, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7- Range: <3.2.4, <3.3.3
- Range: <1.1.5
Patches
Vulnerability mechanics
References
8- www.securityfocus.com/bid/33491nvdPatch
- cvs.horde.org/co.php/groupware/docs/groupware/CHANGESnvdVendor Advisory
- lists.horde.org/archives/announce/2009/000482.htmlnvdVendor Advisory
- lists.horde.org/archives/announce/2009/000483.htmlnvdVendor Advisory
- lists.horde.org/archives/announce/2009/000486.htmlnvdVendor Advisory
- secunia.com/advisories/33695nvdVendor Advisory
- cvs.horde.org/co.php/horde/docs/CHANGESnvd
- cvs.horde.org/co.php/horde/docs/CHANGESnvd
News mentions
0No linked articles in our index yet.