CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-2741

Cross-site scripting (XSS) vulnerability in the "help window" (help.php) in Horde Application Framework 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) module, (2) topic, or (3) module parameters.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.7%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2004-2741

Horde » Application Framework » Version: 2.0

cpe:2.3:a:horde:application_framework:2.0
Horde » Application Framework » Version: 2.1

cpe:2.3:a:horde:application_framework:2.1
Horde » Application Framework » Version: 2.1.3

cpe:2.3:a:horde:application_framework:2.1.3
Horde » Application Framework » Version: 2.2

cpe:2.3:a:horde:application_framework:2.2
Horde » Application Framework » Version: 2.2.1

cpe:2.3:a:horde:application_framework:2.2.1
Horde » Application Framework » Version: 2.2.3

cpe:2.3:a:horde:application_framework:2.2.3
Horde » Application Framework » Version: 2.2.4

cpe:2.3:a:horde:application_framework:2.2.4
Horde » Application Framework » Version: 2.2.4_rc1

cpe:2.3:a:horde:application_framework:2.2.4_rc1
Horde » Application Framework » Version: 2.2.5

cpe:2.3:a:horde:application_framework:2.2.5
Horde » Application Framework » Version: 2.2.6

cpe:2.3:a:horde:application_framework:2.2.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-2741

Products

Pricing

Contact Us