Cross-site scripting (XSS) vulnerability in Horde Nag Task List Manager before 1.1.3 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.
Software | From | Fixed in |
---|---|---|
horde / nag | 1.1.1 | 1.1.1.x |
horde / nag | 1.1.2 | 1.1.2.x |