Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
horde horde 2.2.4 rc1 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-3570
Unspecified cross-site scripting (XSS) vulnerability in Horde prior to 2.2.9 allows remote malicious users to inject arbitrary web script or HTML via "not properly escaped error messages".
Horde Horde 2.2.7
Horde Horde 2.2.3
Horde Horde 2.2.1
Horde Horde 2.2.4
Horde Horde 2.2.8
Horde Horde 2.2.6
Horde Horde 2.2.4 Rc1
Horde Horde 2.2
Horde Horde 2.2.5
5
CVSSv2
CVE-2006-1260
Horde Application Framework 3.0.9 allows remote malicious users to read arbitrary files via a null character in the url parameter in services/go.php, which bypasses a sanity check.
Horde Horde 2.2.7
Horde Horde 3.0.6
Horde Horde 1.2.8
Horde Horde 2.2.3
Horde Horde 1.2
Horde Horde 1.2.1
Horde Horde 2.2.1
Horde Horde 1.2.6
Horde Horde 3.0
Horde Horde 2.2.4
Horde Horde 3.0.3
Horde Horde 2.0
Horde Horde 3.0.4
Horde Horde 1.2.5
Horde Horde 3.0.1
Horde Horde 3.0.4 Rc2
Horde Horde 1.2.3
Horde Horde 2.2.9
Horde Horde 1.2.2
Horde Horde 2.2.8
Horde Horde 3.0.8
Horde Horde 3.0.9
1 EDB exploit
4.3
CVSSv2
CVE-2004-2741
Cross-site scripting (XSS) vulnerability in the "help window" (help.php) in Horde Application Framework 2.2.6 allows remote malicious users to inject arbitrary web script or HTML via the (1) module, (2) topic, or (3) module parameters.
Horde Application Framework 2.1
Horde Application Framework 2.2.4 Rc1
Horde Application Framework 2.0
Horde Application Framework 2.2
Horde Application Framework 2.2.3
Horde Application Framework 2.2.1
Horde Application Framework 2.2.6
Horde Application Framework 2.1.3
Horde Application Framework 2.2.5
Horde Application Framework 2.2.4
5.8
CVSSv2
CVE-2005-3759
Multiple cross-site scripting (XSS) vulnerabilities in Horde prior to 3.0.7 allow remote malicious users to inject arbitrary web script or HTML via the (1) gzip/tar and (2) css MIME viewers, which do not filter or escape dangerous HTML when extracting and displaying attachments.
Horde Horde 2.2.7
Horde Horde 3.0.6
Horde Horde 1.2.8
Horde Horde 2.2.3
Horde Horde 1.2
Horde Horde 1.2.1
Horde Horde 2.2.1
Horde Horde 1.2.6
Horde Horde 3.0
Horde Horde 2.2.4
Horde Horde 3.0.3
Horde Horde 2.0
Horde Horde 3.0.4
Horde Horde 1.2.5
Horde Horde 3.0.1
Horde Horde 3.0.4 Rc2
Horde Horde 1.2.3
Horde Horde 2.2.9
Horde Horde 1.2.2
Horde Horde 2.2.8
Horde Horde 3.0.2
Horde Horde 3.0.4 Rc1
4.3
CVSSv2
CVE-2006-4255
Cross-site scripting (XSS) vulnerability in horde/imp/search.php in Horde IMP H3 prior to 4.1.3 allows remote malicious users to include arbitrary web script or HTML via multiple unspecified vectors related to folder names, as injected into the vfolder_label form field in the IMP...
Horde Imp 2.2.7
Horde Imp 2.2.5
Horde Imp 4.0
Horde Horde 3.0.6
Horde Imp 3.1
Horde Imp 3.2.4
Horde Imp 3.1.2
Horde Imp 2.2.1
Horde Imp 3.2.2
Horde Imp 2.2.2
Horde Imp 4.0.2
Horde Imp 2.2.4
Horde Imp 2.0
Horde Horde 3.0
Horde Horde 3.0.3
Horde Horde 3.1.1
Horde Horde 3.0.4
Horde Imp 2.2.6
Horde Horde 3.1
Horde Horde 3.0.1
Horde Imp 3.2.3
Horde Horde 3.0.4 Rc2
4.3
CVSSv2
CVE-2009-3701
Multiple cross-site scripting (XSS) vulnerabilities in the administration interface in Horde Application Framework prior to 3.3.6, Horde Groupware prior to 1.2.5, and Horde Groupware Webmail Edition prior to 1.2.5 allow remote malicious users to inject arbitrary web script or HTM...
Horde Application Framework 3.0.2
Horde Groupware 1.1
Horde Application Framework 3.2.4
Horde Application Framework 2.1
Horde Groupware 1.0
Horde Groupware 1.2.2
Horde Application Framework 2.2.4 Rc1
Horde Groupware 1.1.5
Horde Application Framework 3.2.1
Horde Application Framework
Horde Application Framework 2.0
Horde Application Framework 3.3.2
Horde Application Framework 3.0.8
Horde Groupware 1.2.1
Horde Application Framework 3.0
Horde Groupware 1.0.2
Horde Application Framework 3.2.2
Horde Groupware
Horde Groupware 1.0.1
Horde Groupware 1.0.5
Horde Application Framework 2.2
Horde Groupware 1.1.1
4 EDB exploits
4.3
CVSSv2
CVE-2009-4363
Text_Filter/lib/Horde/Text/Filter/Xss.php in Horde Application Framework prior to 3.3.6, Horde Groupware prior to 1.2.5, and Horde Groupware Webmail Edition prior to 1.2.5 does not properly handle data: URIs, which allows remote malicious users to conduct cross-site scripting (XS...
Horde Application Framework 3.0.2
Horde Groupware 1.1
Horde Application Framework 3.2.4
Horde Application Framework 2.1
Horde Groupware 1.0
Horde Groupware 1.2.2
Horde Application Framework 2.2.4 Rc1
Horde Groupware 1.1.5
Horde Application Framework 3.2.1
Horde Application Framework
Horde Application Framework 2.0
Horde Application Framework 3.3.2
Horde Application Framework 3.0.8
Horde Groupware 1.2.1
Horde Application Framework 3.0
Horde Groupware 1.0.2
Horde Application Framework 3.2.2
Horde Groupware
Horde Groupware 1.0.1
Horde Groupware 1.0.5
Horde Application Framework 2.2
Horde Groupware 1.1.1
4.3
CVSSv2
CVE-2007-1473
Cross-site scripting (XSS) vulnerability in framework/NLS/NLS.php in Horde Framework prior to 3.1.4 RC1, when the login page contains a language selection box, allows remote malicious users to inject arbitrary web script or HTML via the new_lang parameter to login.php.
Horde Horde Application Framework 1.2.3
Horde Horde Application Framework 2.0
Horde Horde Application Framework 1.2.4
Horde Horde Application Framework 3.0.0
Horde Horde Application Framework 2.2.5
Horde Horde Application Framework 3.0.4
Horde Horde Application Framework 3.1.0
Horde Horde Application Framework 3.1.2
Horde Horde Application Framework 2.2.9
Horde Horde Application Framework 2.2.3
Horde Horde Application Framework 1.2.1
Horde Horde Application Framework 1.3.3
Horde Horde Application Framework 3.0.5
Horde Horde Application Framework 3.0.10
Horde Horde Application Framework 3.0.1
Horde Horde Application Framework 1.2.6
Horde Horde Application Framework 2.2.8
Horde Horde Application Framework 2.2.6
Horde Horde Application Framework 1.2.0
Horde Horde Application Framework 1.2.7
Horde Horde Application Framework 3.1.1
Horde Horde Application Framework 3.0.8
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started