Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
horde horde 3.1.3 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3824
Cross-site scripting (XSS) vulnerability in (1) Text_Filter/Filter/xss.php in Horde 3.1.x prior to 3.1.9 and 3.2.x prior to 3.2.2 and (2) externalinput.php in Popoon r22196 and previous versions allows remote malicious users to inject arbitrary web script or HTML by using / (slas...
Horde Horde 3.2
Horde Horde 3.1.6
Horde Horde 3.1.8
Popoon Popoon
Horde Horde 3.2.1
Horde Horde 3.1.2
Horde Horde 3.1.1
Horde Horde 3.1.7
Horde Horde 3.1.5
Horde Horde 3.1.4
Horde Horde 3.1.3
1 EDB exploit
NA
CVE-2007-1473
Cross-site scripting (XSS) vulnerability in framework/NLS/NLS.php in Horde Framework prior to 3.1.4 RC1, when the login page contains a language selection box, allows remote malicious users to inject arbitrary web script or HTML via the new_lang parameter to login.php.
Horde Horde Application Framework 1.2.5
Horde Horde Application Framework 1.2.6
Horde Horde Application Framework 1.2.7
Horde Horde Application Framework 2.2.1
Horde Horde Application Framework 2.2.3
Horde Horde Application Framework 3.0.0
Horde Horde Application Framework 3.0.1
Horde Horde Application Framework 3.0.8
Horde Horde Application Framework 3.0.9
Horde Horde Application Framework 1.2.0
Horde Horde Application Framework 1.2.8
Horde Horde Application Framework 1.3.3
Horde Horde Application Framework 2.2.4
Horde Horde Application Framework 2.2.5
Horde Horde Application Framework 3.0.10
Horde Horde Application Framework 3.0.2
Horde Horde Application Framework 3.1.0
Horde Horde Application Framework 3.1.1
Horde Horde Application Framework 1.2.3
Horde Horde Application Framework 1.2.4
Horde Horde Application Framework 2.1
Horde Horde Application Framework 2.2
1 EDB exploit
NA
CVE-2007-1474
Argument injection vulnerability in the cleanup cron script in Horde Project Horde and IMP before Horde Application Framework 3.1.4 allows local users to delete arbitrary files and possibly gain privileges via multiple space-delimited pathnames.
Horde Horde Application Framework 3.0.4
Horde Horde Application Framework 3.1.3
Horde Imp 2.2.5
Horde Imp 2.2.6
Horde Imp 3.2.1
Horde Imp 3.2.2
Horde Imp 2.0
Horde Imp 2.2
Horde Imp 2.2.7
Horde Imp 2.2.8
Horde Imp 3.2.3
Horde Imp 3.2.4
Horde Horde Application Framework 3.0.0
Horde Imp 2.2.3
Horde Imp 2.2.4
Horde Imp 3.1.2
Horde Imp 3.2
Horde Imp 2.2.1
Horde Imp 2.2.2
Horde Imp 2.3
Horde Imp 3.0
Horde Imp 3.1
1 EDB exploit
NA
CVE-2006-3548
Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework 3.0.0 up to and including 3.0.10 and 3.1.0 up to and including 3.1.1 allow remote malicious users to inject arbitrary web script or HTML via a (1) javascript URI or an external (2) http, (3) https,...
Horde Horde 3.0.2
Horde Horde 3.0.3
Horde Horde 3.0.9
Horde Horde 3.1
Horde Horde 3.0.4
Horde Horde 3.0.4 Rc1
Horde Horde 3.1.1
Horde Horde 3.0.4 Rc2
Horde Horde 3.0.6
Horde Horde 3.0
Horde Horde 3.0.1
Horde Horde 3.0.7
Horde Horde 3.0.8
NA
CVE-2008-7218
Unspecified vulnerability in the Horde API in Horde 3.1 prior to 3.1.6 and 3.2 prior to 3.2 prior to 3.2-RC2; Turba H3 2.1 prior to 2.1.6 and 2.2 prior to 2.2-RC2; Kronolith H3 2.1 prior to 2.1.7 and H3 2.2 prior to 2.2-RC2; Nag H3 2.1 prior to 2.1.4 and 2.2 prior to 2.2-RC2; Mne...
Horde Kronolith H3 2.1.1
Horde Kronolith H3 2.1
Horde Kronolith H3 2.1.2
Horde Turba H3 2.1.1
Horde Turba H3 2.1
Horde Nag H3 2.1.2
Horde Nag H3 2.1.3
Horde Groupware 1.1
Horde Horde 3.1.1
Horde Horde 3.1.2
Horde Kronolith H3 2.1.5
Horde Kronolith H3 2.1.6
Horde Turba H3 2.1.4
Horde Turba H3 2.2
Horde Mnemo H3 2.1.1
Horde Mnemo H3 2.2
Horde Groupware Webmail Edition 1.1
Horde Horde 3.1.5
Horde Groupware Webmail Edition 1.0
Horde Horde 3.1
Horde Kronolith H3 2.1.3
Horde Kronolith H3 2.1.4
NA
CVE-2010-3077
Cross-site scripting (XSS) vulnerability in util/icon_browser.php in the Horde Application Framework prior to 3.3.9 allows remote malicious users to inject arbitrary web script or HTML via the subdir parameter.
Horde Horde Application Framework 1.0.3
Horde Horde Application Framework 1.1.1
Horde Horde Application Framework 2.0
Horde Horde Application Framework 2.1
Horde Horde Application Framework 2.2.6
Horde Horde Application Framework 2.2.7
Horde Horde Application Framework 3.0.3
Horde Horde Application Framework 3.0.9
Horde Horde Application Framework 3.1.3
Horde Horde Application Framework 3.1.4
Horde Horde Application Framework 3.2
Horde Horde Application Framework 3.2.1
Horde Horde Application Framework 3.3.5
Horde Horde Application Framework 3.3.6
Horde Horde Application Framework 3.1.8
Horde Horde Application Framework 3.0.5
Horde Horde Application Framework 3.0.8
Horde Horde Application Framework 1.3.2
Horde Horde Application Framework 1.3.5
Horde Horde Application Framework 2.2.4
Horde Horde Application Framework 2.2.5
Horde Horde Application Framework 3.0.1
1 EDB exploit
NA
CVE-2010-3694
Cross-site request forgery (CSRF) vulnerability in the Horde Application Framework prior to 3.3.9 allows remote malicious users to hijack the authentication of unspecified victims for requests to a preference form.
Horde Horde Application Framework 1.0.3
Horde Horde Application Framework 1.1.1
Horde Horde Application Framework 2.0
Horde Horde Application Framework 2.1
Horde Horde Application Framework 2.2.7
Horde Horde Application Framework 2.2.8
Horde Horde Application Framework 3.0.3
Horde Horde Application Framework 3.0.9
Horde Horde Application Framework 3.1.3
Horde Horde Application Framework 3.1.4
Horde Horde Application Framework 3.2.1
Horde Horde Application Framework 3.2.3
Horde Horde Application Framework 3.3.5
Horde Horde Application Framework 3.3.6
Horde Horde Application Framework 3.1.8
Horde Horde Application Framework 3.0.5
Horde Horde Application Framework 3.2
Horde Horde Application Framework 3.0.8
Horde Horde Application Framework 1.3.3
Horde Horde Application Framework 1.3.4
Horde Horde Application Framework 2.2
Horde Horde Application Framework 2.2.1
NA
CVE-2009-3237
Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework 3.2 prior to 3.2.5 and 3.3 prior to 3.3.5; Groupware 1.1 prior to 1.1.6 and 1.2 prior to 1.2.4; and Groupware Webmail Edition 1.1 prior to 1.1.6 and 1.2 prior to 1.2.4; allow remote malicious users...
Horde Horde Application Framework 3.2
Horde Horde Application Framework 3.3.2
Horde Horde Application Framework 3.3.3
Horde Horde Groupware 1.2.1
Horde Horde Groupware 1.2.2
Horde Horde Application Framework 3.2.1
Horde Horde Application Framework 3.2.2
Horde Horde Application Framework 3.3.4
Horde Horde Groupware 1.1.1
Horde Horde Groupware 1.2.3
Horde Horde Application Framework 3.3
Horde Horde Application Framework 3.3.1
Horde Horde Groupware 1.1.4
Horde Horde Groupware 1.2
Horde Horde Application Framework 3.2.3
Horde Horde Application Framework 3.2.4
Horde Horde Groupware 1.1.2
Horde Horde Groupware 1.1.3
Horde Horde Groupware 1.1.5
Horde Groupware 1.1
Horde Groupware 1.1.3
Horde Groupware 1.2.3
NA
CVE-2006-3549
services/go.php in Horde Application Framework 3.0.0 up to and including 3.0.10 and 3.1.0 up to and including 3.1.1 does not properly restrict its image proxy capability, which allows remote malicious users to perform "Web tunneling" attacks and use the server as a prox...
Horde Horde Application Framework 3.0.4
Horde Horde Application Framework 3.0.5
Horde Horde Application Framework 3.0.0
Horde Horde Application Framework 3.0.6
Horde Horde Application Framework 3.0.7
Horde Horde Application Framework 3.0.1
Horde Horde Application Framework 3.0.10
Horde Horde Application Framework 3.0.8
Horde Horde Application Framework 3.0.9
Horde Horde Application Framework 3.0.2
Horde Horde Application Framework 3.0.3
Horde Horde Application Framework 3.1.0
Horde Horde Application Framework 3.1.1
NA
CVE-2009-3701
Multiple cross-site scripting (XSS) vulnerabilities in the administration interface in Horde Application Framework prior to 3.3.6, Horde Groupware prior to 1.2.5, and Horde Groupware Webmail Edition prior to 1.2.5 allow remote malicious users to inject arbitrary web script or HTM...
Horde Application Framework 3.3.4
Horde Application Framework 2.1
Horde Application Framework 2.1.3
Horde Application Framework 3.0.4
Horde Application Framework 3.0
Horde Application Framework 3.0.9
Horde Application Framework 3.2.1
Horde Groupware 1.2.3
Horde Groupware
Horde Groupware 1.0.1
Horde Groupware 1.2
Horde Groupware 1.1.5
Horde Application Framework 2.2.4 Rc1
Horde Application Framework 2.2.5
Horde Application Framework 2.2.3
Horde Application Framework 3.0.1
Horde Application Framework 2.2.6
Horde Application Framework 2.0
Horde Application Framework 3.0.2
Horde Application Framework 3.0.3
Horde Application Framework 3.1
Horde Application Framework 3.1.1
4 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »