Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
horde kronolith vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6175
Directory traversal vulnerability in lib/FBView.php in Horde Kronolith H3 prior to 2.0.7 and 2.1.x prior to 2.1.4 allows remote malicious users to include arbitrary files and execute PHP code via a .. (dot dot) sequence in the view parameter.
Horde Kronolith 2.0.5
Horde Kronolith 2.0.4
Horde Kronolith 2.1.3
Horde Kronolith 2.0.3
Horde Kronolith 2.1.2
Horde Kronolith 2.0.1
Horde Kronolith 2.1
Horde Kronolith 2.0.6
Horde Kronolith 2.1.1
Horde Kronolith 2.0.2
NA
CVE-2012-6620
Multiple cross-site scripting (XSS) vulnerabilities in the (1) tasks and (2) search views in Horde Kronolith H4 prior to 3.0.17 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Horde Kronolith H4 3.0.5
Horde Kronolith H4 3.0
Horde Kronolith H4 3.0.11
Horde Kronolith H4 3.0.3
Horde Kronolith H4 3.0.8
Horde Kronolith H4 3.0.4
Horde Kronolith H4 3.0.6
Horde Kronolith H4
Horde Kronolith H4 3.0.14
Horde Kronolith H4 3.0.10
Horde Kronolith H4 3.0.15
Horde Kronolith H4 3.0.1
Horde Kronolith H4 3.0.2
Horde Kronolith H4 3.0.9
Horde Kronolith H4 3.0.13
Horde Kronolith H4 3.0.12
Horde Kronolith H4 3.0.7
NA
CVE-2012-5566
Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith Calendar Application H4 prior to 3.0.17, as used in Horde Groupware Webmail Edition prior to 4.0.8, allow remote malicious users to inject arbitrary web script or HTML via the (1) tasks view or (2) search view...
Horde Kronolith H4 3.0.5
Horde Kronolith H4 3.0
Horde Kronolith H4 3.0.11
Horde Kronolith H4 3.0.3
Horde Kronolith H4 3.0.8
Horde Kronolith H4 3.0.4
Horde Kronolith H4 3.0.6
Horde Kronolith H4
Horde Kronolith H4 3.0.14
Horde Kronolith H4 3.0.10
Horde Kronolith H4 3.0.15
Horde Kronolith H4 3.0.1
Horde Kronolith H4 3.0.2
Horde Kronolith H4 3.0.9
Horde Kronolith H4 3.0.13
Horde Kronolith H4 3.0.12
Horde Kronolith H4 3.0.7
Horde Groupware 4.0
Horde Groupware 4.0.3
Horde Groupware 4.0.2
Horde Groupware 4.0.1
Horde Groupware 4.0.5
NA
CVE-2012-5567
Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith Calendar Application H4 prior to 3.0.18, as used in Horde Groupware Webmail Edition prior to 4.0.9, allow remote malicious users to inject arbitrary web script or HTML via crafted event location parameters in ...
Horde Groupware 4.0
Horde Groupware 4.0.3
Horde Groupware 4.0.2
Horde Groupware 4.0.7
Horde Groupware 4.0.1
Horde Groupware 4.0.5
Horde Groupware
Horde Groupware 4.0.4
Horde Groupware 4.0.6
Horde Kronolith H4 3.0.5
Horde Kronolith H4 3.0
Horde Kronolith H4 3.0.11
Horde Kronolith H4 3.0.3
Horde Kronolith H4 3.0.8
Horde Kronolith H4
Horde Kronolith H4 3.0.4
Horde Kronolith H4 3.0.6
Horde Kronolith H4 3.0.14
Horde Kronolith H4 3.0.10
Horde Kronolith H4 3.0.15
Horde Kronolith H4 3.0.16
Horde Kronolith H4 3.0.1
NA
CVE-2005-4189
Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith H3 prior to 2.0.6 allow remote authenticated users to inject arbitrary web script or HTML via (1) the Calendar name field when creating calendars, (2) event title field when deleting events, the (3) Category a...
Horde Kronolith H3 2.0 Rc2
Horde Kronolith H3 2.0 Rc1
Horde Kronolith H3 2.0.4
Horde Kronolith H3 2.0
Horde Kronolith H3 2.0.2 Rc1
Horde Kronolith H3 2.0.5
Horde Kronolith H3 2.0 Rc3
Horde Kronolith H3 2.0.3
Horde Kronolith H3 2.0.1
Horde Kronolith H3 2.0.2
Horde Kronolith H3 2.0.4 Rc1
Horde Kronolith H3 2.0 Alpha
Horde Kronolith H3 2.0.3 Rc1
Horde Kronolith H3 2.0 Beta
NA
CVE-2008-7219
Horde Kronolith H3 2.1 prior to 2.1.7 and 2.2 prior to 2.2-RC2; Nag H3 2.1 prior to 2.1.4 and 2.2 prior to 2.2-RC2; Mnemo H3 2.1 prior to 2.1.2 and H3 2.2 prior to 2.2-RC2; Groupware 1.0 prior to 1.0.3 and 1.1 prior to 1.1-RC2; and Groupware Webmail Edition 1.0 prior to 1.0.4 and...
Horde Nag H3 2.1.3
Horde Groupware 1.1
Horde Groupware Webmail Edition 1.1
Horde Nag H3 2.1.2
Horde Groupware 1.0
Horde Nag H3 2.1.1
Horde Nag H3 2.2
Horde Kronolith H3 2.1.5
Horde Groupware 1.0.2
Horde Groupware Webmail Edition 1.0.3
Horde Mnemo H3 2.1.1
Horde Mnemo H3 2.1
Horde Kronolith H3 2.1.2
Horde Kronolith H3 2.1.4
Horde Groupware 1.0.1
Horde Groupware Webmail Edition 1.0
Horde Nag H3 2.1
Horde Groupware Webmail Edition 1.0.2
Horde Kronolith H3 2.1.3
Horde Mnemo H3 2.2
Horde Kronolith H3 2.1.1
Horde Kronolith H3 2.1
NA
CVE-2008-7218
Unspecified vulnerability in the Horde API in Horde 3.1 prior to 3.1.6 and 3.2 prior to 3.2 prior to 3.2-RC2; Turba H3 2.1 prior to 2.1.6 and 2.2 prior to 2.2-RC2; Kronolith H3 2.1 prior to 2.1.7 and H3 2.2 prior to 2.2-RC2; Nag H3 2.1 prior to 2.1.4 and 2.2 prior to 2.2-RC2; Mne...
Horde Nag H3 2.1.3
Horde Horde 3.2
Horde Groupware 1.1
Horde Horde 3.1.4
Horde Groupware Webmail Edition 1.1
Horde Nag H3 2.1.2
Horde Groupware 1.0
Horde Turba H3 2.2
Horde Nag H3 2.1.1
Horde Turba H3 2.1.1
Horde Nag H3 2.2
Horde Turba H3 2.1.4
Horde Horde 3.1.5
Horde Turba H3 2.1.5
Horde Kronolith H3 2.1.5
Horde Groupware 1.0.2
Horde Groupware Webmail Edition 1.0.3
Horde Mnemo H3 2.1.1
Horde Mnemo H3 2.1
Horde Kronolith H3 2.1.2
Horde Kronolith H3 2.1.4
Horde Groupware 1.0.1
NA
CVE-2008-2783
Multiple cross-site scripting (XSS) vulnerabilities in Horde Groupware, Groupware Webmail Edition, and Kronolith allow remote malicious users to inject arbitrary web script or HTML via the timestamp parameter to (1) week.php, (2) workweek.php, and (3) day.php; and (4) the horde p...
Horde Kronolith
Horde Groupware
Horde Groupware Webmail Edition
3 EDB exploits
NA
CVE-2005-1314
Cross-site scripting (XSS) vulnerability in Horde Kronolith module prior to 1.1.4 allows remote malicious users to inject arbitrary web script or HTML via the parent's frame page title.
Horde Kronolith 1.1.3
5.4
CVSSv3
CVE-2017-16906
In Horde Groupware 5.2.19-5.2.22, there is XSS via the URL field in a "Calendar -> New Event" action.
Horde Groupware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »