Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
horde horde 3.2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3823
Cross-site scripting (XSS) vulnerability in MIME/MIME/Contents.php in the MIME library in Horde 3.2.x prior to 3.2.2 allows remote malicious users to inject arbitrary web script or HTML via the filename of a MIME attachment in an e-mail message.
Horde Horde 3.2
Horde Horde 3.2.1
1 EDB exploit
NA
CVE-2008-3824
Cross-site scripting (XSS) vulnerability in (1) Text_Filter/Filter/xss.php in Horde 3.1.x prior to 3.1.9 and 3.2.x prior to 3.2.2 and (2) externalinput.php in Popoon r22196 and previous versions allows remote malicious users to inject arbitrary web script or HTML by using / (slas...
Horde Horde 3.2
Horde Horde 3.1.6
Horde Horde 3.1.8
Popoon Popoon
Horde Horde 3.2.1
Horde Horde 3.1.2
Horde Horde 3.1.1
Horde Horde 3.1.7
Horde Horde 3.1.5
Horde Horde 3.1.4
Horde Horde 3.1.3
1 EDB exploit
NA
CVE-2009-0932
Directory traversal vulnerability in framework/Image/Image.php in Horde prior to 3.2.4 and 3.3.3 and Horde Groupware prior to 1.1.5 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the Horde_Image driver name.
Debian Horde 3.2.2
Debian Horde 3.3
Debian Horde Groupware 1.1.1
Debian Horde Groupware 1.1.2
Debian Horde 3.2
Debian Horde 3.2.3
Debian Horde Groupware 1.1.3
Debian Horde Groupware 1.1.4
Debian Horde 3.3.1
Debian Horde 3.3.2
1 EDB exploit
2 Github repositories
NA
CVE-2005-4080
Horde IMP 4.0.4 and previous versions does not sanitize strings containing UTF16 null characters, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via UTF16 encoded attachments and strings that will be executed when viewed using Internet Explorer,...
Horde Imp 2.0
Horde Imp 2.2
Horde Imp 2.2.7
Horde Imp 2.2.8
Horde Imp 3.2.2
Horde Imp 3.2.3
Horde Imp 2.2.3
Horde Imp 2.2.4
Horde Imp 3.1
Horde Imp 3.1.2
Horde Imp 4.0
Horde Imp 4.0.1
Horde Imp 2.2.5
Horde Imp 2.2.6
Horde Imp 3.2
Horde Imp 3.2.1
Horde Imp 4.0.2
Horde Imp 4.0.3
Horde Imp 4.0.4
Horde Imp 2.2.1
Horde Imp 2.2.2
Horde Imp 2.3
1 EDB exploit
NA
CVE-2004-0584
Unknown vulnerability in Horde IMP 3.2.3 and previous versions, before a "security fix," does not properly validate input, which allows remote malicious users to execute arbitrary script as other users via script or HTML in an e-mail message, possibly triggering a cross...
Horde Imp 2.0
Horde Imp 2.2
Horde Imp 2.2.7
Horde Imp 2.2.8
Horde Imp 3.2.2
Horde Imp 3.2.3
Horde Imp 2.2.1
Horde Imp 2.2.2
Horde Imp 2.3
Horde Imp 3.0
Horde Imp 2.2.3
Horde Imp 2.2.4
Horde Imp 3.1
Horde Imp 3.1.2
Horde Imp 2.2.5
Horde Imp 2.2.6
Horde Imp 3.2
Horde Imp 3.2.1
NA
CVE-2004-1443
Cross-site scripting (XSS) vulnerability in the inline MIME viewer in Horde-IMP (Internet Messaging Program) 3.2.4 and previous versions, when used with Internet Explorer, allows remote malicious users to inject arbitrary web script or HTML via an e-mail message.
Horde Imp 2.0
Horde Imp 2.2
Horde Imp 2.2.7
Horde Imp 2.2.8
Horde Imp 3.2.2
Horde Imp 3.2.3
Horde Imp 2.2.3
Horde Imp 2.2.4
Horde Imp 3.1
Horde Imp 3.1.2
Horde Imp 2.2.5
Horde Imp 2.2.6
Horde Imp 3.2
Horde Imp 3.2.1
Horde Imp 2.2.1
Horde Imp 2.2.2
Horde Imp 2.3
Horde Imp 3.0
Horde Imp 3.2.4
NA
CVE-2007-1474
Argument injection vulnerability in the cleanup cron script in Horde Project Horde and IMP before Horde Application Framework 3.1.4 allows local users to delete arbitrary files and possibly gain privileges via multiple space-delimited pathnames.
Horde Horde Application Framework 3.0.4
Horde Horde Application Framework 3.1.3
Horde Imp 2.2.5
Horde Imp 2.2.6
Horde Imp 3.2.1
Horde Imp 3.2.2
Horde Imp 2.0
Horde Imp 2.2
Horde Imp 2.2.7
Horde Imp 2.2.8
Horde Imp 3.2.3
Horde Imp 3.2.4
Horde Horde Application Framework 3.0.0
Horde Imp 2.2.3
Horde Imp 2.2.4
Horde Imp 3.1.2
Horde Imp 3.2
Horde Imp 2.2.1
Horde Imp 2.2.2
Horde Imp 2.3
Horde Imp 3.0
Horde Imp 3.1
1 EDB exploit
NA
CVE-2006-4255
Cross-site scripting (XSS) vulnerability in horde/imp/search.php in Horde IMP H3 prior to 4.1.3 allows remote malicious users to include arbitrary web script or HTML via multiple unspecified vectors related to folder names, as injected into the vfolder_label form field in the IMP...
Horde Horde 3.0.4 Rc1
Horde Horde 3.0.4 Rc2
Horde Horde 3.0.6
Horde Imp 2.2
Horde Imp 2.2.1
Horde Imp 2.2.8
Horde Imp 2.3
Horde Imp 3.2.4
Horde Imp 3.2.5
Horde Horde 3.0.1
Horde Horde 3.0.2
Horde Horde 3.0.9
Horde Horde 3.1
Horde Horde 3.0
Horde Horde 3.0.7
Horde Horde 3.0.8
Horde Imp 2.2.2
Horde Imp 2.2.3
Horde Imp 3.0
Horde Imp 3.1
Horde Horde 3.0.3
Horde Horde 3.0.4
NA
CVE-2009-3237
Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework 3.2 prior to 3.2.5 and 3.3 prior to 3.3.5; Groupware 1.1 prior to 1.1.6 and 1.2 prior to 1.2.4; and Groupware Webmail Edition 1.1 prior to 1.1.6 and 1.2 prior to 1.2.4; allow remote malicious users...
Horde Horde Application Framework 3.2
Horde Horde Application Framework 3.3.2
Horde Horde Application Framework 3.3.3
Horde Horde Groupware 1.2.1
Horde Horde Groupware 1.2.2
Horde Horde Application Framework 3.2.1
Horde Horde Application Framework 3.2.2
Horde Horde Application Framework 3.3.4
Horde Horde Groupware 1.1.1
Horde Horde Groupware 1.2.3
Horde Horde Application Framework 3.3
Horde Horde Application Framework 3.3.1
Horde Horde Groupware 1.1.4
Horde Horde Groupware 1.2
Horde Horde Application Framework 3.2.3
Horde Horde Application Framework 3.2.4
Horde Horde Groupware 1.1.2
Horde Horde Groupware 1.1.3
Horde Horde Groupware 1.1.5
Horde Groupware 1.1
Horde Groupware 1.1.3
Horde Groupware 1.2.3
NA
CVE-2009-3236
The form library in Horde Application Framework 3.2 prior to 3.2.5 and 3.3 prior to 3.3.5; Groupware 1.1 prior to 1.1.6 and 1.2 prior to 1.2.4; and Groupware Webmail Edition 1.1 prior to 1.1.6 and 1.2 prior to 1.2.4; reuses temporary filenames during the upload process which allo...
Horde Application Framework 3.2.3
Horde Application Framework 3.2
Horde Application Framework 3.3.3
Horde Application Framework 3.3.4
Horde Groupware 1.1.4
Horde Groupware 1.1.5
Horde Application Framework 3.2.2
Horde Application Framework 3.2.4
Horde Groupware 1.1
Horde Groupware 1.1.1
Horde Groupware 1.2
Horde Groupware 1.2.1
Horde Application Framework 3.3.1
Horde Application Framework 3.3.2
Horde Groupware 1.2.3
Horde Groupware 1.1.3
Horde Application Framework 3.2.1
Horde Application Framework 3.3
Horde Groupware 1.1.2
Horde Groupware 1.2.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »