Debian Security Advisory 1099-1 - Michael Marek discovered that the Horde web application framework performs insufficient input sanitising, which might lead to the injection of web script code through cross-site scripting.
3f8bf5fa359aa72394529808716b18c1d9594b801e2a1cbd48e30fa3bc567179