Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
horde horde vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2010-3447
Cross-site scripting (XSS) vulnerability in view.php in the file viewer in Horde Gollem prior to 1.1.2 allows remote malicious users to inject arbitrary web script or HTML via the file parameter in a view_file action.
Horde Gollem
Horde Gollem 1.1
Horde Gollem 1.0
Horde Gollem 1.0.2
Horde Gollem 1.0.1
Horde Gollem 1.0.4
Horde Gollem 1.0.3
4.3
CVSSv2
CVE-2012-6620
Multiple cross-site scripting (XSS) vulnerabilities in the (1) tasks and (2) search views in Horde Kronolith H4 prior to 3.0.17 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Horde Kronolith H4 3.0.15
Horde Kronolith H4 3.0.14
Horde Kronolith H4 3.0.7
Horde Kronolith H4 3.0.6
Horde Kronolith H4 3.0.5
Horde Kronolith H4 3.0
Horde Kronolith H4 3.0.11
Horde Kronolith H4 3.0.10
Horde Kronolith H4 3.0.2
Horde Kronolith H4 3.0.1
Horde Kronolith H4
Horde Kronolith H4 3.0.9
Horde Kronolith H4 3.0.8
Horde Kronolith H4 3.0.13
Horde Kronolith H4 3.0.12
Horde Kronolith H4 3.0.4
Horde Kronolith H4 3.0.3
4.3
CVSSv2
CVE-2014-4946
Multiple cross-site scripting (XSS) vulnerabilities in Horde Internet Mail Program (IMP) prior to 6.1.8, as used in Horde Groupware Webmail Edition prior to 5.1.5, allow remote malicious users to inject arbitrary web script or HTML via (1) unspecified flags or (2) a mailbox name ...
Horde Groupware 5.0.2
Horde Groupware 5.0.1
Horde Groupware 5.0.0
Horde Internet Mail Program 6.0.5
Horde Internet Mail Program 6.0.4
Horde Internet Mail Program 6.0.3
Horde Internet Mail Program 6.0.2
Horde Groupware
Horde Groupware 5.1.3
Horde Groupware 5.1.2
Horde Groupware 5.1.1
Horde Internet Mail Program 6.1.3
Horde Internet Mail Program 6.1.2
Horde Internet Mail Program 6.1.1
Horde Internet Mail Program 6.1.0
Horde Internet Mail Program 6.0.0
Horde Groupware 5.1.0
Horde Groupware 5.0.5
Horde Groupware 5.0.3
Horde Internet Mail Program
Horde Internet Mail Program 6.1.5
Horde Internet Mail Program 6.0.6
4.3
CVSSv2
CVE-2014-4945
Multiple cross-site scripting (XSS) vulnerabilities in Horde Internet Mail Program (IMP) prior to 6.1.8, as used in Horde Groupware Webmail Edition prior to 5.1.5, allow remote malicious users to inject arbitrary web script or HTML via an unspecified flag in the basic (1) mailbox...
Horde Groupware
Horde Groupware 5.1.3
Horde Groupware 5.1.2
Horde Groupware 5.1.1
Horde Groupware 5.1.0
Horde Internet Mail Program 6.1.3
Horde Internet Mail Program 6.1.2
Horde Internet Mail Program 6.1.1
Horde Internet Mail Program 6.1.0
Horde Internet Mail Program 6.0.0
Horde Groupware 5.0.2
Horde Groupware 5.0.1
Horde Groupware 5.0.0
Horde Internet Mail Program 6.0.5
Horde Internet Mail Program 6.0.4
Horde Internet Mail Program 6.0.3
Horde Internet Mail Program 6.0.2
Horde Internet Mail Program 6.0.1
Horde Groupware 5.0.4
Horde Internet Mail Program 6.1.6
Horde Internet Mail Program 6.1.4
Horde Groupware 5.0.5
6.4
CVSSv2
CVE-2009-0932
Directory traversal vulnerability in framework/Image/Image.php in Horde prior to 3.2.4 and 3.3.3 and Horde Groupware prior to 1.1.5 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the Horde_Image driver name.
Debian Horde 3.2.2
Debian Horde 3.3
Debian Horde Groupware 1.1.1
Debian Horde Groupware 1.1.2
Debian Horde 3.2
Debian Horde 3.2.3
Debian Horde Groupware 1.1.3
Debian Horde Groupware 1.1.4
Debian Horde 3.3.1
Debian Horde 3.3.2
1 EDB exploit
2 Github repositories
4.3
CVSSv2
CVE-2005-1315
Cross-site scripting (XSS) vulnerability in Horde Turba module prior to 1.2.5 allows remote malicious users to inject arbitrary web script or HTML via the parent's frame page title.
Horde Turba 1.2.1 Rc1
Horde Turba 1.2.2
Horde Turba 1.2.3
Horde Turba 1.2.3 Rc1
Horde Turba 1.2
Horde Turba 1.2.1
Horde Turba 1.2.4
3.6
CVSSv2
CVE-2001-1258
Horde Internet Messaging Program (IMP) prior to 2.2.6 allows local users to read IMP configuration files and steal the Horde database password by placing the prefs.lang file containing PHP code on the server.
Horde Imp 2.0
Horde Imp 2.2
Horde Imp 2.2.5
Horde Imp 2.2.3
Horde Imp 2.2.4
Horde Imp 2.2.1
Horde Imp 2.2.2
7.5
CVSSv2
CVE-2001-1257
Cross-site scripting vulnerability in Horde Internet Messaging Program (IMP) prior to 2.2.6 and 1.2.6 allows remote malicious users to execute arbitrary Javascript embedded in an email.
Horde Imp 2.0
Horde Imp 2.2.4
Horde Imp 2.2.5
Horde Imp 2.2.2
Horde Imp 2.2.3
Horde Imp 2.2
Horde Imp 2.2.1
10
CVSSv2
CVE-2008-7219
Horde Kronolith H3 2.1 prior to 2.1.7 and 2.2 prior to 2.2-RC2; Nag H3 2.1 prior to 2.1.4 and 2.2 prior to 2.2-RC2; Mnemo H3 2.1 prior to 2.1.2 and H3 2.2 prior to 2.2-RC2; Groupware 1.0 prior to 1.0.3 and 1.1 prior to 1.1-RC2; and Groupware Webmail Edition 1.0 prior to 1.0.4 and...
Horde Kronolith H3 2.1.3
Horde Kronolith H3 2.1.6
Horde Nag H3 2.1
Horde Groupware 1.0
Horde Groupware 1.0.2
Horde Nag H3 2.1.2
Horde Nag H3 2.1.3
Horde Nag H3 2.2
Horde Mnemo H3 2.1
Horde Kronolith H3 2.1.4
Horde Kronolith H3 2.1
Horde Kronolith H3 2.1.2
Horde Kronolith H3 2.1.5
Horde Groupware 1.1
Horde Mnemo H3 2.1.1
Horde Groupware Webmail Edition 1.1
Horde Groupware Webmail Edition 1.0
Horde Groupware Webmail Edition 1.0.2
Horde Kronolith H3 2.1.1
Horde Kronolith H3 2.2
Horde Nag H3 2.1.1
Horde Mnemo H3 2.2
2.1
CVSSv2
CVE-2001-0744
Horde IMP 2.2.4 and previous versions allows local users to overwrite files via a symlink attack on a temporary file.
Horde Imp 2.2.2
Horde Imp 2.2.3
Horde Imp
Horde Imp 2.2
Horde Imp 2.0
Horde Imp 2.2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »