{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Horde Application Framework versions 3.0.10 et ant\u00e9rieures.","product":{"name":"N/A","vendor":{"name":"Horde","scada":false}}},{"description":"Horde Application Framework versions 3.1.1 et ant\u00e9rieures ;","product":{"name":"N/A","vendor":{"name":"Horde","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nDes vuln\u00e9rabilit\u00e9s de type cross site scripting ont \u00e9t\u00e9 d\u00e9couvertes dans\nHorde Application Framework.\n\n## Solution\n\nLes vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans le r\u00e9pertoire CVS de Horde.\nCertains \u00e9diteurs ont adapt\u00e9 ces modifications et ont publi\u00e9 des\nbulletins de s\u00e9curit\u00e9 (voir Documentation).\n","cves":[{"name":"CVE-2006-2195","url":"https://www.cve.org/CVERecord?id=CVE-2006-2195"}],"links":[{"title":"Site Internet de Horde :","url":"http://www.horde.org"},{"title":"Modifications dans le r\u00e9pertoire CVS de Horde :","url":"http://cvs.horde.org/diff.php?f=horde%2Ftemplates%2Fproblem%2Fproblem.inc&r1=2.25&r2=2.26"},{"title":"Modifications dans le r\u00e9pertoire CVS de Horde :","url":"http://cvs.horde.org/diff.php?f=horde%2Ftest.php&r1=1.145&r2=1.146"},{"title":"Bulletin de s\u00e9curit\u00e9 Gentoo GLSA-200606-28 du 29 juin 2006    :","url":"http://www.gentoo.org/security/en/glsa/glsa-200606-28.xml"},{"title":"Bulletin de s\u00e9curit\u00e9 Debian DSA 1098 du 14 juin 2006 :","url":"http://www.debian.org/security/2006/dsa-1098"}],"reference":"CERTA-2006-AVI-263","revisions":[{"description":"version initiale.","revision_date":"2006-06-29T00:00:00.000000"}],"risks":[{"description":"Injection de code indirecte \u00e0 distance (XSS)"}],"summary":null,"title":"Vuln\u00e9rabilit\u00e9s dans Horde Application Framework 3","vendor_advisories":[{"published_at":null,"title":"R\u00e9pertoire CVS de Horde","url":null}]}