VYPR

Passwd

by Horde (software)

CVEs (2)

  • CVE-2009-2360Jul 8, 2009
    risk 0.03cvss epss 0.05

    Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter.

  • CVE-2005-1313May 2, 2005
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.