CVE-2005-4192

Publication date 13 December 2005

Last updated 24 July 2024


Ubuntu priority

Multiple cross-site scripting (XSS) vulnerabilities in templates/notepads/notepads.inc in Horde Mnemo Note Manager H3 before 2.0.3 allow remote authenticated users to inject arbitrary web script or HTML via (1) the notepad's name or (2) description, when creating a new notepad.

Status

Package Ubuntu Release Status
mnemo2 7.04 feisty
Fixed 2.0.3-1
6.10 edgy
Fixed 2.0.3-1
6.06 LTS dapper
Fixed 2.0.3-1