Debian Linux Security Advisory 3496-1 - It was discovered that php-horde-core, a set of classes providing the core functionality of the Horde Application Framework, is prone to a cross-site scripting vulnerability.
fb2e808e2bc1b55e3a678a6bd92bf163b812a242063669eceb2cf4d1b24e361d