Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
horde vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-1319
Cross-site scripting (XSS) vulnerability in Horde IMP Webmail client prior to 3.2.8 allows remote malicious users to inject arbitrary web script or HTML via the parent's frame page title.
Horde Imp 3.2.3
Horde Imp 3.2.4
Horde Imp 3.2.5
Horde Imp 3.2.6
Horde Imp 3.2.7
Horde Imp
Horde Imp 3.2.7 Rc1
4.3
CVSSv2
CVE-2012-6620
Multiple cross-site scripting (XSS) vulnerabilities in the (1) tasks and (2) search views in Horde Kronolith H4 prior to 3.0.17 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Horde Kronolith H4 3.0.15
Horde Kronolith H4 3.0.14
Horde Kronolith H4 3.0.7
Horde Kronolith H4 3.0.6
Horde Kronolith H4 3.0.5
Horde Kronolith H4 3.0
Horde Kronolith H4 3.0.11
Horde Kronolith H4 3.0.10
Horde Kronolith H4 3.0.2
Horde Kronolith H4 3.0.1
Horde Kronolith H4
Horde Kronolith H4 3.0.9
Horde Kronolith H4 3.0.8
Horde Kronolith H4 3.0.13
Horde Kronolith H4 3.0.12
Horde Kronolith H4 3.0.4
Horde Kronolith H4 3.0.3
6.4
CVSSv2
CVE-2009-0932
Directory traversal vulnerability in framework/Image/Image.php in Horde prior to 3.2.4 and 3.3.3 and Horde Groupware prior to 1.1.5 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the Horde_Image driver name.
Debian Horde 3.2.2
Debian Horde 3.3
Debian Horde Groupware 1.1.1
Debian Horde Groupware 1.1.2
Debian Horde 3.2
Debian Horde 3.2.3
Debian Horde Groupware 1.1.3
Debian Horde Groupware 1.1.4
Debian Horde 3.3.1
Debian Horde 3.3.2
1 EDB exploit
2 Github repositories
7.5
CVSSv2
CVE-2001-1257
Cross-site scripting vulnerability in Horde Internet Messaging Program (IMP) prior to 2.2.6 and 1.2.6 allows remote malicious users to execute arbitrary Javascript embedded in an email.
Horde Imp 2.0
Horde Imp 2.2.4
Horde Imp 2.2.5
Horde Imp 2.2.2
Horde Imp 2.2.3
Horde Imp 2.2
Horde Imp 2.2.1
3.6
CVSSv2
CVE-2001-1258
Horde Internet Messaging Program (IMP) prior to 2.2.6 allows local users to read IMP configuration files and steal the Horde database password by placing the prefs.lang file containing PHP code on the server.
Horde Imp 2.0
Horde Imp 2.2
Horde Imp 2.2.5
Horde Imp 2.2.3
Horde Imp 2.2.4
Horde Imp 2.2.1
Horde Imp 2.2.2
4.3
CVSSv2
CVE-2005-1315
Cross-site scripting (XSS) vulnerability in Horde Turba module prior to 1.2.5 allows remote malicious users to inject arbitrary web script or HTML via the parent's frame page title.
Horde Turba 1.2.1 Rc1
Horde Turba 1.2.2
Horde Turba 1.2.3
Horde Turba 1.2.3 Rc1
Horde Turba 1.2
Horde Turba 1.2.1
Horde Turba 1.2.4
4.3
CVSSv2
CVE-2014-4946
Multiple cross-site scripting (XSS) vulnerabilities in Horde Internet Mail Program (IMP) prior to 6.1.8, as used in Horde Groupware Webmail Edition prior to 5.1.5, allow remote malicious users to inject arbitrary web script or HTML via (1) unspecified flags or (2) a mailbox name ...
Horde Groupware 5.0.2
Horde Groupware 5.0.1
Horde Groupware 5.0.0
Horde Internet Mail Program 6.0.5
Horde Internet Mail Program 6.0.4
Horde Internet Mail Program 6.0.3
Horde Internet Mail Program 6.0.2
Horde Groupware
Horde Groupware 5.1.3
Horde Groupware 5.1.2
Horde Groupware 5.1.1
Horde Internet Mail Program 6.1.3
Horde Internet Mail Program 6.1.2
Horde Internet Mail Program 6.1.1
Horde Internet Mail Program 6.1.0
Horde Internet Mail Program 6.0.0
Horde Groupware 5.1.0
Horde Groupware 5.0.5
Horde Groupware 5.0.3
Horde Internet Mail Program
Horde Internet Mail Program 6.1.5
Horde Internet Mail Program 6.0.6
4.3
CVSSv2
CVE-2014-4945
Multiple cross-site scripting (XSS) vulnerabilities in Horde Internet Mail Program (IMP) prior to 6.1.8, as used in Horde Groupware Webmail Edition prior to 5.1.5, allow remote malicious users to inject arbitrary web script or HTML via an unspecified flag in the basic (1) mailbox...
Horde Groupware
Horde Groupware 5.1.3
Horde Groupware 5.1.2
Horde Groupware 5.1.1
Horde Groupware 5.1.0
Horde Internet Mail Program 6.1.3
Horde Internet Mail Program 6.1.2
Horde Internet Mail Program 6.1.1
Horde Internet Mail Program 6.1.0
Horde Internet Mail Program 6.0.0
Horde Groupware 5.0.2
Horde Groupware 5.0.1
Horde Groupware 5.0.0
Horde Internet Mail Program 6.0.5
Horde Internet Mail Program 6.0.4
Horde Internet Mail Program 6.0.3
Horde Internet Mail Program 6.0.2
Horde Internet Mail Program 6.0.1
Horde Groupware 5.0.4
Horde Internet Mail Program 6.1.6
Horde Internet Mail Program 6.1.4
Horde Groupware 5.0.5
10
CVSSv2
CVE-2008-7219
Horde Kronolith H3 2.1 prior to 2.1.7 and 2.2 prior to 2.2-RC2; Nag H3 2.1 prior to 2.1.4 and 2.2 prior to 2.2-RC2; Mnemo H3 2.1 prior to 2.1.2 and H3 2.2 prior to 2.2-RC2; Groupware 1.0 prior to 1.0.3 and 1.1 prior to 1.1-RC2; and Groupware Webmail Edition 1.0 prior to 1.0.4 and...
Horde Kronolith H3 2.1.3
Horde Kronolith H3 2.1.6
Horde Nag H3 2.1
Horde Groupware 1.0
Horde Groupware 1.0.2
Horde Nag H3 2.1.2
Horde Nag H3 2.1.3
Horde Nag H3 2.2
Horde Mnemo H3 2.1
Horde Kronolith H3 2.1.4
Horde Kronolith H3 2.1
Horde Kronolith H3 2.1.2
Horde Kronolith H3 2.1.5
Horde Groupware 1.1
Horde Mnemo H3 2.1.1
Horde Groupware Webmail Edition 1.1
Horde Groupware Webmail Edition 1.0
Horde Groupware Webmail Edition 1.0.2
Horde Kronolith H3 2.1.1
Horde Kronolith H3 2.2
Horde Nag H3 2.1.1
Horde Mnemo H3 2.2
4.3
CVSSv2
CVE-2009-2360
Cross-site scripting (XSS) vulnerability in passwd/main.php in the Passwd module prior to 3.1.1 for Horde allows remote malicious users to inject arbitrary web script or HTML via the backend parameter.
Horde Passwd
Horde Passwd 2.2.1
Horde Passwd 2.2.2
Horde Passwd 2.2
Horde Passwd 2.1
Horde Passwd 2.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »