CVE-2005-4191 in Nag Task List Manager H3info

Summary

Multiple cross-site scripting (XSS) vulnerabilities in templates/tasklists/tasklists.inc in Horde Nag Task List Manager H3 before 2.0.4 allow remote authenticated users to inject arbitrary web script or HTML via (1) the tasklist s name or (2) description, when creating a new tasklist.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

12/13/2005

Disclosure

12/13/2005

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-80

CVSS

3.5

EPSS

0.00371

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-4191
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-4191
CVE Details	https://www.cvedetails.com/cve/CVE-2005-4191/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!