horde-webmail

2008-12-20

Page content

Author: Miklos Vajna
Vulnerable: 1.1.2-1
Unaffected: 1.2.1-1solaria1

This is a minor security release that adds another check to the XSS filter for an Internet Explorer exploit and fixes unescaped output in the test.php scripts. All users are encouraged to upgrade to this version. In addition all users are encouraged to disable test.php in production, per the install documentation.

Bug Tracker URL: http://bugs.frugalware.org/task/3518

CVEs:

No CVE, see http://lists.horde.org/archives/announce/2008/000472.html.