Candidate: CVE-2012-6620
PublicDate: 2014-01-16 21:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6620
 https://github.com/horde/horde/commit/1228a6825a8dab3333d0a8c8986fc10d1f3d11b2
 http://xforce.iss.net/xforce/xfdb/75563
 http://secunia.com/advisories/49147
 http://lists.horde.org/archives/announce/2012/000766.html
 http://bugs.horde.org/ticket/11189
Description:
 Multiple cross-site scripting (XSS) vulnerabilities in the (1) tasks and
 (2) search views in Horde Kronolith H4 before 3.0.17 allow remote attackers
 to inject arbitrary web script or HTML via unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_php-horde-kronolith:
upstream_php-horde-kronolith: released (3.0.17)
lucid_php-horde-kronolith: DNE
precise_php-horde-kronolith: DNE
quantal_php-horde-kronolith: DNE
raring_php-horde-kronolith: not-affected (4.0.3-1)
saucy_php-horde-kronolith: not-affected
devel_php-horde-kronolith: not-affected