Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
horde horde imp - vulnerabilities and exploits
(subscribe to this query)
NA
CVE_2022_40684
Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...
1 Github repository
4.3
CVSSv2
CVE-2017-17688
The OpenPGP specification allows a Cipher Feedback Mode (CFB) malleability-gadget attack that can indirectly lead to plaintext exfiltration, aka EFAIL. NOTE: third parties report that this is a problem in applications that mishandle the Modification Detection Code (MDC) feature o...
Microsoft Outlook 2007
Horde Horde Imp -
Flipdogsolutions Maildroid -
R2mail2 R2mail2 -
Apple Mail -
Bloop Airmail -
Freron Mailmate -
Mozilla Thunderbird -
Emclient Emclient -
Postbox-inc Postbox -
Roundcube Webmail -
1 Github repository
1 Article
4.3
CVSSv2
CVE-2017-17689
The S/MIME specification allows a Cipher Block Chaining (CBC) malleability-gadget attack that can indirectly lead to plaintext exfiltration, aka EFAIL.
Gnome Evolution -
Mozilla Thunderbird -
Ibm Notes -
Emclient Emclient -
Horde Horde Imp -
9folders Nine -
Freron Mailmate -
Kde Kmail -
Ritlabs The Bat -
Microsoft Outlook 2013
Flipdogsolutions Maildroid -
R2mail2 R2mail2 -
Apple Mail -
Bloop Airmail -
Microsoft Outlook 2010
Microsoft Outlook 2007
Google Gmail -
Kde Trojita -
Postbox-inc Postbox -
Microsoft Outlook 2016
1 Github repository
1 Article
4.3
CVSSv2
CVE-2014-4945
Multiple cross-site scripting (XSS) vulnerabilities in Horde Internet Mail Program (IMP) prior to 6.1.8, as used in Horde Groupware Webmail Edition prior to 5.1.5, allow remote malicious users to inject arbitrary web script or HTML via an unspecified flag in the basic (1) mailbox...
Horde Groupware
Horde Groupware 5.1.3
Horde Groupware 5.1.2
Horde Groupware 5.1.1
Horde Groupware 5.1.0
Horde Internet Mail Program 6.1.3
Horde Internet Mail Program 6.1.2
Horde Internet Mail Program 6.1.1
Horde Internet Mail Program 6.1.0
Horde Internet Mail Program 6.0.0
Horde Groupware 5.0.2
Horde Groupware 5.0.1
Horde Groupware 5.0.0
Horde Internet Mail Program 6.0.5
Horde Internet Mail Program 6.0.4
Horde Internet Mail Program 6.0.3
Horde Internet Mail Program 6.0.2
Horde Internet Mail Program 6.0.1
Horde Groupware 5.0.4
Horde Internet Mail Program 6.1.6
Horde Internet Mail Program 6.1.4
Horde Groupware 5.0.5
4.3
CVSSv2
CVE-2014-4946
Multiple cross-site scripting (XSS) vulnerabilities in Horde Internet Mail Program (IMP) prior to 6.1.8, as used in Horde Groupware Webmail Edition prior to 5.1.5, allow remote malicious users to inject arbitrary web script or HTML via (1) unspecified flags or (2) a mailbox name ...
Horde Groupware 5.0.2
Horde Groupware 5.0.1
Horde Groupware 5.0.0
Horde Internet Mail Program 6.0.5
Horde Internet Mail Program 6.0.4
Horde Internet Mail Program 6.0.3
Horde Internet Mail Program 6.0.2
Horde Groupware
Horde Groupware 5.1.3
Horde Groupware 5.1.2
Horde Groupware 5.1.1
Horde Internet Mail Program 6.1.3
Horde Internet Mail Program 6.1.2
Horde Internet Mail Program 6.1.1
Horde Internet Mail Program 6.1.0
Horde Internet Mail Program 6.0.0
Horde Groupware 5.1.0
Horde Groupware 5.0.5
Horde Groupware 5.0.3
Horde Internet Mail Program
Horde Internet Mail Program 6.1.5
Horde Internet Mail Program 6.0.6
4.3
CVSSv2
CVE-2012-6640
Cross-site scripting (XSS) vulnerability in Horde Internet Mail Program (IMP) prior to 5.0.22, as used in Horde Groupware Webmail Edition prior to 4.0.9, allows remote malicious users to inject arbitrary web script or HTML via a crafted SVG image attachment, a different vulnerabi...
Horde Groupware 4.0.7
Horde Groupware 4.0.2
Horde Groupware 4.0
Horde Groupware 4.0.6
Horde Groupware 4.0.5
Horde Groupware 4.0.4
Horde Groupware 4.0.3
Horde Groupware
Horde Groupware 4.0.1
Horde Imp 5.0.3
Horde Imp 5.0.2
Horde Imp 5.0.1
Horde Imp 5.0.7
Horde Imp 5.0.5
Horde Imp 5.0.6
Horde Imp 5.0.4
Horde Imp 5.0
Horde Imp 5.0.13
Horde Imp 5.0.9
Horde Imp 5.0.8
Horde Imp 5.0.12
Horde Imp 5.0.16
4.3
CVSSv2
CVE-2012-5565
Cross-site scripting (XSS) vulnerability in js/compose-dimp.js in Horde Internet Mail Program (IMP) prior to 5.0.24, as used in Horde Groupware Webmail Edition prior to 4.0.9, allows remote malicious users to inject arbitrary web script or HTML via a crafted name for an attached ...
Horde Imp 5.0.12
Horde Imp 5.0.10
Horde Imp 5.0.8
Horde Imp 5.0.6
Horde Imp 5.0.20
Horde Imp 5.0.16
Horde Imp 5.0.5
Horde Imp 5.0.9
Horde Imp
Horde Imp 5.0.22
Horde Imp 5.0.13
Horde Imp 5.0.15
Horde Imp 5.0.17
Horde Imp 5.0.19
Horde Imp 5.0.18
Horde Imp 5.0.14
Horde Imp 5.0.4
Horde Imp 5.0.7
Horde Imp 5.0.11
Horde Imp 5.0.21
Horde Groupware 4.0.6
Horde Groupware 4.0.5
4.3
CVSSv2
CVE-2012-0791
Multiple cross-site scripting (XSS) vulnerabilities in Horde IMP prior to 5.0.18 and Horde Groupware Webmail Edition prior to 4.0.6 allow remote malicious users to inject arbitrary web script or HTML via the (1) composeCache, (2) rtemode, or (3) filename_* parameters to the compo...
Horde Imp 2.2.7
Horde Dynamic Imp 1.1
Horde Imp 2.2.5
Horde Imp 4.0
Horde Dynamic Imp 1.1.6
Horde Imp 4.1.3
Horde Dynamic Imp 1.1.1
Horde Dynamic Imp 5.0.4
Horde Imp 4.1.6
Horde Imp 5.0.3
Horde Imp 3.1
Horde Imp 5.0.2
Horde Dynamic Imp 5.0.13
Horde Imp 4.3.6
Horde Dynamic Imp 1.0
Horde Dynamic Imp 5.0.5
Horde Imp 3.2.4
Horde Imp 3.1.2
Horde Imp 5.0
Horde Imp 4.3.3
Horde Imp 4.2
Horde Dynamic Imp
4.3
CVSSv2
CVE-2010-4778
Multiple cross-site scripting (XSS) vulnerabilities in fetchmailprefs.php in Horde IMP prior to 4.3.8, and Horde Groupware Webmail Edition prior to 1.2.7, allow remote malicious users to inject arbitrary web script or HTML via the (1) username (aka fmusername), (2) password (aka ...
Horde Imp 4.0.3
Horde Imp 4.1.6
Horde Imp 2.2.5
Horde Imp 2.2.6
Horde Imp 4.2.2
Horde Imp 4.2
Horde Imp 3.2.7
Horde Imp 4.0
Horde Imp 3.2
Horde Imp 3.2.2
Horde Imp 2.2
Horde Imp 2.2.1
Horde Imp 2.2.2
Horde Imp 3.2.4
Horde Imp 3.2.3
Horde Imp 3.2.6
Horde Imp 3.2.5
Horde Imp 4.1.3
Horde Imp 4.0.4
Horde Imp 2.2.4
Horde Imp 4.3.6
Horde Imp 2.0
4.3
CVSSv2
CVE-2010-3693
Cross-site scripting (XSS) vulnerability in Horde Dynamic IMP (DIMP) prior to 1.1.5, and Horde Groupware Webmail Edition prior to 1.2.7, allows remote malicious users to inject arbitrary web script or HTML via vectors related to displaying mailbox names.
Horde Groupware 1.0.7
Horde Groupware 1.1.4
Horde Groupware 1.1.3
Horde Groupware 1.2
Horde Groupware 1.0
Horde Groupware
Horde Groupware 1.1.6
Horde Groupware 1.1
Horde Groupware 1.0.1
Horde Groupware 1.0.6
Horde Groupware 1.2.2
Horde Groupware 1.2.5
Horde Groupware 1.0.4
Horde Groupware 1.2.3
Horde Groupware 1.1.5
Horde Groupware 1.0.5
Horde Groupware 1.1.2
Horde Groupware 1.0.2
Horde Groupware 1.0.3
Horde Groupware 1.2.4
Horde Groupware 1.0.8
Horde Groupware 1.1.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »