6.0.0-alpha10
5/15/25

[#15190] Security: IMP HTML Email view does not sanitize against javascript in the onerror property
Summary Security: IMP HTML Email view does not sanitize against javascript in the onerror property
Queue IMP
Queue Version FRAMEWORK_6_0
Type Bug
State Assigned
Priority 3. High
Owners ralf.lang (at) ralf-lang (dot) de
Requester natasa.jakec (at) gmail (dot) com
Created 05/15/2025 (today)
Due
Updated 05/15/2025 (today)
Assigned 05/15/2025 (today)
Resolved
Milestone
Patch No

History
05/15/2025 09:55:52 AM natasa (dot) jakec (at) gmail (dot) com Comment #1
State ⇒ Assigned
Priority ⇒ 3. High
Type ⇒ Bug
Summary ⇒ Security: IMP HTML Email view does not sanitize against javascript in the onerror property
Queue ⇒ IMP
Assigned to Ralf Lang
Milestone ⇒
Patch ⇒ No		 Reply to this comment
See Re: [horde] Horde v 5.2.22 vulnerability ? obfuscation via HTML 
encoding ? XSS payload

Quick remedy is to disable HTML display.
Proper solution needs server-side filtering against javascript.

This was originally reported against Horde 5.2 - unsure if a patch can 
be backported.
New Ticket
My Tickets
Search
Query Builder
Reports

Saved Queries

Open Bugs
Bugs waiting for Feedback
Open Bugs in Releases
Open Enhancements
Enhancements waiting for Feedback
Bugs with Patches
Enhancements with Patches
Release Showstoppers
Stalled Tickets
New Tickets
Horde 5 Showstoppers