1
Candidate: CVE-2012-0791
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0791
6
Multiple cross-site scripting (XSS) vulnerabilities in Horde IMP before
7
5.0.18 and Horde Groupware Webmail Edition before 4.0.6 allow remote
8
attackers to inject arbitrary web script or HTML via the (1) composeCache,
9
(2) rtemode, or (3) filename_* parameters to the compose page; (4) formname
10
parameter to the contacts popup window; or (5) IMAP mailbox names. NOTE:
11
some of these details are obtained from third party information.
20
upstream_imp4: needs-triage
21
hardy_imp4: ignored (reached end-of-life)
22
lucid_imp4: ignored (reached end-of-life)
23
maverick_imp4: ignored (reached end-of-life)
24
natty_imp4: ignored (reached end-of-life)
25
oneiric_imp4: ignored (reached end-of-life)
26
precise_imp4: ignored (reached end-of-life)
27
precise/esm_imp4: DNE (precise was needs-triage)
28
quantal_imp4: ignored (reached end-of-life)
34
vivid/stable-phone-overlay_imp4: DNE
35
vivid/ubuntu-core_imp4: DNE