CVE-2009-0930

NameCVE-2009-0930
DescriptionMultiple cross-site scripting (XSS) vulnerabilities in Horde IMP before 4.2.2 and 4.3.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to (1) smime.php, (2) pgp.php, and (3) message.php.
SourceCVE (at NVD; LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-1770-1
NVD severitymedium (attack range: remote)
Debian Bugs513266

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
imp4source(unstable)4.2-4medium513266
imp4sourceetch4.1.3-4etch1mediumDSA-1770-1

Search for package or bug name: Reporting problems