PublicDate: 2006-08-21 20:04:00 UTC
Candidate: CVE-2006-4256
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4256
Description:
 index.php in Horde Application Framework before 3.1.2 allows remote
 attackers to include web pages from other sites, which could be useful for
 phishing attacks, via a URL in the url parameter, aka "cross-site
 referencing." NOTE: some sources have referred to this issue as XSS, but it
 is different than classic XSS.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_horde3: ignored (reached end-of-life)
edgy_horde3: released (3.1.3-1)
feisty_horde3: released (3.1.3-1)
gutsy_horde3: released (3.1.3-1)
hardy_horde3: released (3.1.3-1)
intrepid_horde3: released (3.1.3-1)
jaunty_horde3: released (3.1.3-1)
karmic_horde3: released (3.1.3-1)
devel_horde3: released (3.1.3-1)
upstream_horde3: needs-triage