Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
horde groupware 1.1.3 vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2009-0932
Directory traversal vulnerability in framework/Image/Image.php in Horde prior to 3.2.4 and 3.3.3 and Horde Groupware prior to 1.1.5 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the Horde_Image driver name.
Debian Horde 3.3.2
Debian Horde 3.2
Debian Horde Groupware 1.1.3
Debian Horde 3.2.2
Debian Horde Groupware 1.1.1
Debian Horde 3.3.1
Debian Horde 3.2.3
Debian Horde 3.3
Debian Horde Groupware 1.1.2
Debian Horde Groupware 1.1.4
1 EDB exploit
2 Github repositories
4.3
CVSSv2
CVE-2012-0909
Cross-site scripting (XSS) vulnerability in Horde_Form in Horde Groupware Webmail Edition prior to 4.0.6 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, related to email verification. NOTE: Some of these details are obtained from thir...
Horde Groupware Webmail Edition 1.1.5
Horde Groupware Webmail Edition 1.0
Horde Groupware Webmail Edition 1.0.1
Horde Groupware Webmail Edition 1.1
Horde Groupware Webmail Edition 4.0.1
Horde Groupware Webmail Edition 1.2.2
Horde Groupware Webmail Edition 1.2.8
Horde Groupware Webmail Edition
Horde Groupware Webmail Edition 1.0.5
Horde Groupware Webmail Edition 1.2.4
Horde Groupware Webmail Edition 1.0.7
Horde Groupware Webmail Edition 1.1.6
Horde Groupware Webmail Edition 1.0.3
Horde Groupware Webmail Edition 4.0.3
Horde Groupware Webmail Edition 1.0.8
Horde Groupware Webmail Edition 1.2.5
Horde Groupware Webmail Edition 1.2.7
Horde Groupware Webmail Edition 1.2.1
Horde Groupware Webmail Edition 4.0.2
Horde Groupware Webmail Edition 1.0.2
Horde Groupware Webmail Edition 1.1.1
Horde Groupware Webmail Edition 1.0.6
4.3
CVSSv2
CVE-2012-0791
Multiple cross-site scripting (XSS) vulnerabilities in Horde IMP prior to 5.0.18 and Horde Groupware Webmail Edition prior to 4.0.6 allow remote malicious users to inject arbitrary web script or HTML via the (1) composeCache, (2) rtemode, or (3) filename_* parameters to the compo...
Horde Imp 2.2.7
Horde Dynamic Imp 1.1
Horde Imp 2.2.5
Horde Imp 4.0
Horde Dynamic Imp 1.1.6
Horde Imp 4.1.3
Horde Dynamic Imp 1.1.1
Horde Dynamic Imp 5.0.4
Horde Imp 4.1.6
Horde Imp 5.0.3
Horde Imp 3.1
Horde Imp 5.0.2
Horde Dynamic Imp 5.0.13
Horde Imp 4.3.6
Horde Dynamic Imp 1.0
Horde Dynamic Imp 5.0.5
Horde Imp 3.2.4
Horde Imp 3.1.2
Horde Imp 5.0
Horde Imp 4.3.3
Horde Imp 4.2
Horde Dynamic Imp
4.3
CVSSv2
CVE-2010-4778
Multiple cross-site scripting (XSS) vulnerabilities in fetchmailprefs.php in Horde IMP prior to 4.3.8, and Horde Groupware Webmail Edition prior to 1.2.7, allow remote malicious users to inject arbitrary web script or HTML via the (1) username (aka fmusername), (2) password (aka ...
Horde Imp 2.2.7
Horde Imp 2.2.5
Horde Imp 4.0
Horde Imp 4.1.3
Horde Imp 4.1.6
Horde Imp 3.1
Horde Imp 4.3.6
Horde Imp 3.2.4
Horde Imp 3.1.2
Horde Imp 4.3.3
Horde Imp 4.2
Horde Imp 2.2.1
Horde Imp 3.2.2
Horde Imp 4.3.1
Horde Imp 2.2.2
Horde Imp 4.0.2
Horde Imp 2.2.4
Horde Imp
Horde Imp 2.0
Horde Imp 4.2.1
Horde Imp 4.3.2
Horde Imp 2.2.6
4.3
CVSSv2
CVE-2010-3693
Cross-site scripting (XSS) vulnerability in Horde Dynamic IMP (DIMP) prior to 1.1.5, and Horde Groupware Webmail Edition prior to 1.2.7, allows remote malicious users to inject arbitrary web script or HTML via vectors related to displaying mailbox names.
Horde Groupware 1.1
Horde Groupware 1.0
Horde Groupware 1.2.2
Horde Groupware 1.1.5
Horde Groupware 1.2.1
Horde Groupware 1.0.2
Horde Groupware 1.0.1
Horde Groupware 1.0.5
Horde Groupware 1.1.1
Horde Groupware 1.0.3
Horde Groupware 1.1.3
Horde Groupware 1.0.4
Horde Groupware 1.2
Horde Groupware 1.1.4
Horde Groupware 1.1.2
Horde Groupware 1.2.3
Horde Groupware 1.0.6
Horde Groupware 1.0.7
Horde Groupware 1.0.8
Horde Groupware 1.1.6
Horde Groupware 1.2.4
Horde Groupware 1.2.5
4.3
CVSSv2
CVE-2010-3695
Cross-site scripting (XSS) vulnerability in fetchmailprefs.php in Horde IMP prior to 4.3.8, and Horde Groupware Webmail Edition prior to 1.2.7, allows remote malicious users to inject arbitrary web script or HTML via the fm_id parameter in a fetchmail_prefs_save action, related t...
Horde Imp 2.2.7
Horde Imp 2.2.5
Horde Imp 4.0
Horde Imp 4.1.3
Horde Imp 4.1.6
Horde Imp 3.1
Horde Imp 4.3.6
Horde Imp 3.2.4
Horde Imp 3.1.2
Horde Imp 4.3.3
Horde Imp 4.2
Horde Imp 2.2.1
Horde Imp 3.2.2
Horde Imp 4.3.1
Horde Imp 2.2.2
Horde Imp 4.0.2
Horde Imp 2.2.4
Horde Imp
Horde Imp 2.0
Horde Imp 4.2.1
Horde Imp 4.3.2
Horde Imp 2.2.6
1 EDB exploit
4.3
CVSSv2
CVE-2009-4363
Text_Filter/lib/Horde/Text/Filter/Xss.php in Horde Application Framework prior to 3.3.6, Horde Groupware prior to 1.2.5, and Horde Groupware Webmail Edition prior to 1.2.5 does not properly handle data: URIs, which allows remote malicious users to conduct cross-site scripting (XS...
Horde Application Framework 3.0.2
Horde Groupware 1.1
Horde Application Framework 3.2.4
Horde Application Framework 2.1
Horde Groupware 1.0
Horde Groupware 1.2.2
Horde Application Framework 2.2.4 Rc1
Horde Groupware 1.1.5
Horde Application Framework 3.2.1
Horde Application Framework
Horde Application Framework 2.0
Horde Application Framework 3.3.2
Horde Application Framework 3.0.8
Horde Groupware 1.2.1
Horde Application Framework 3.0
Horde Groupware 1.0.2
Horde Application Framework 3.2.2
Horde Groupware
Horde Groupware 1.0.1
Horde Groupware 1.0.5
Horde Application Framework 2.2
Horde Groupware 1.1.1
4.3
CVSSv2
CVE-2009-3701
Multiple cross-site scripting (XSS) vulnerabilities in the administration interface in Horde Application Framework prior to 3.3.6, Horde Groupware prior to 1.2.5, and Horde Groupware Webmail Edition prior to 1.2.5 allow remote malicious users to inject arbitrary web script or HTM...
Horde Application Framework 3.0.2
Horde Groupware 1.1
Horde Application Framework 3.2.4
Horde Application Framework 2.1
Horde Groupware 1.0
Horde Groupware 1.2.2
Horde Application Framework 2.2.4 Rc1
Horde Groupware 1.1.5
Horde Application Framework 3.2.1
Horde Application Framework
Horde Application Framework 2.0
Horde Application Framework 3.3.2
Horde Application Framework 3.0.8
Horde Groupware 1.2.1
Horde Application Framework 3.0
Horde Groupware 1.0.2
Horde Application Framework 3.2.2
Horde Groupware
Horde Groupware 1.0.1
Horde Groupware 1.0.5
Horde Application Framework 2.2
Horde Groupware 1.1.1
4 EDB exploits
4.3
CVSSv2
CVE-2009-3237
Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework 3.2 prior to 3.2.5 and 3.3 prior to 3.3.5; Groupware 1.1 prior to 1.1.6 and 1.2 prior to 1.2.4; and Groupware Webmail Edition 1.1 prior to 1.1.6 and 1.2 prior to 1.2.4; allow remote malicious users...
Horde Horde Groupware 1.2.3
Horde Horde Application Framework 3.2.3
Horde Horde Groupware 1.1.3
Horde Horde Groupware 1.1.4
Horde Horde Application Framework 3.2
Horde Horde Groupware 1.1.2
Horde Horde Application Framework 3.3
Horde Horde Groupware 1.2
Horde Horde Groupware 1.2.1
Horde Horde Application Framework 3.3.2
Horde Horde Groupware 1.1.1
Horde Horde Application Framework 3.3.4
Horde Horde Application Framework 3.2.1
Horde Horde Application Framework 3.3.1
Horde Horde Application Framework 3.2.2
Horde Horde Groupware 1.1.5
Horde Horde Application Framework 3.2.4
Horde Horde Application Framework 3.3.3
Horde Horde Groupware 1.2.2
Horde Groupware 1.1
Horde Groupware 1.2.2
Horde Groupware 1.2.1
4.3
CVSSv2
CVE-2009-3236
The form library in Horde Application Framework 3.2 prior to 3.2.5 and 3.3 prior to 3.3.5; Groupware 1.1 prior to 1.1.6 and 1.2 prior to 1.2.4; and Groupware Webmail Edition 1.1 prior to 1.1.6 and 1.2 prior to 1.2.4; reuses temporary filenames during the upload process which allo...
Horde Groupware 1.1
Horde Application Framework 3.2.4
Horde Groupware 1.2.2
Horde Groupware 1.1.5
Horde Application Framework 3.2.1
Horde Application Framework 3.3.2
Horde Groupware 1.2.1
Horde Application Framework 3.2.2
Horde Groupware 1.1.1
Horde Application Framework 3.3.3
Horde Groupware 1.1.3
Horde Application Framework 3.3.4
Horde Application Framework 3.2.3
Horde Application Framework 3.3.1
Horde Application Framework 3.2
Horde Groupware 1.2
Horde Groupware 1.1.4
Horde Application Framework 3.3
Horde Groupware 1.1.2
Horde Groupware 1.2.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started