HomePentest-Tools.com Logo

Horde Turba Contact Manager /imp/test.php Cross Site Scripting Vulnerability CVE-2008-4182

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

Turba Contact Manager is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.

Risk description

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.

Recommendation

Updates are available. Please see the references for more information.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Sep 23, 2008
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available