Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
horde horde 3.0.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE_2022_40684
Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...
1 Github repository
NA
CVE-2012-5566
Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith Calendar Application H4 prior to 3.0.17, as used in Horde Groupware Webmail Edition prior to 4.0.8, allow remote malicious users to inject arbitrary web script or HTML via the (1) tasks view or (2) search view...
Horde Kronolith H4 3.0.11
Horde Kronolith H4 3.0.12
Horde Kronolith H4 3.0.13
Horde Kronolith H4 3.0.14
Horde Kronolith H4 3.0
Horde Kronolith H4 3.0.1
Horde Kronolith H4
Horde Kronolith H4 3.0.3
Horde Kronolith H4 3.0.8
Horde Kronolith H4 3.0.4
Horde Kronolith H4 3.0.5
Horde Kronolith H4 3.0.6
Horde Kronolith H4 3.0.7
Horde Kronolith H4 3.0.10
Horde Kronolith H4 3.0.15
Horde Kronolith H4 3.0.2
Horde Kronolith H4 3.0.9
Horde Groupware 4.0.6
Horde Groupware 4.0.5
Horde Groupware 4.0.4
Horde Groupware 4.0.3
Horde Groupware 4.0.1
NA
CVE-2012-5567
Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith Calendar Application H4 prior to 3.0.18, as used in Horde Groupware Webmail Edition prior to 4.0.9, allow remote malicious users to inject arbitrary web script or HTML via crafted event location parameters in ...
Horde Groupware 4.0
Horde Groupware 4.0.3
Horde Groupware 4.0.1
Horde Groupware
Horde Groupware 4.0.7
Horde Groupware 4.0.6
Horde Groupware 4.0.5
Horde Groupware 4.0.4
Horde Groupware 4.0.2
Horde Kronolith H4 3.0.16
Horde Kronolith H4
Horde Kronolith H4 3.0.2
Horde Kronolith H4 3.0.3
Horde Kronolith H4 3.0.4
Horde Kronolith H4 3.0
Horde Kronolith H4 3.0.13
Horde Kronolith H4 3.0.15
Horde Kronolith H4 3.0.6
Horde Kronolith H4 3.0.8
Horde Kronolith H4 3.0.1
Horde Kronolith H4 3.0.10
Horde Kronolith H4 3.0.11
NA
CVE-2012-6620
Multiple cross-site scripting (XSS) vulnerabilities in the (1) tasks and (2) search views in Horde Kronolith H4 prior to 3.0.17 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Horde Kronolith H4 3.0.15
Horde Kronolith H4 3.0.14
Horde Kronolith H4 3.0.7
Horde Kronolith H4 3.0.6
Horde Kronolith H4 3.0.5
Horde Kronolith H4 3.0
Horde Kronolith H4 3.0.11
Horde Kronolith H4 3.0.10
Horde Kronolith H4 3.0.2
Horde Kronolith H4 3.0.1
Horde Kronolith H4
Horde Kronolith H4 3.0.9
Horde Kronolith H4 3.0.8
Horde Kronolith H4 3.0.13
Horde Kronolith H4 3.0.12
Horde Kronolith H4 3.0.4
Horde Kronolith H4 3.0.3
NA
CVE-2010-3077
Cross-site scripting (XSS) vulnerability in util/icon_browser.php in the Horde Application Framework prior to 3.3.9 allows remote malicious users to inject arbitrary web script or HTML via the subdir parameter.
Horde Horde Application Framework 1.0.3
Horde Horde Application Framework 1.1.1
Horde Horde Application Framework 2.0
Horde Horde Application Framework 2.1
Horde Horde Application Framework 2.2.6
Horde Horde Application Framework 2.2.7
Horde Horde Application Framework 3.0.3
Horde Horde Application Framework 3.0.9
Horde Horde Application Framework 3.1.3
Horde Horde Application Framework 3.1.4
Horde Horde Application Framework 3.2
Horde Horde Application Framework 3.2.1
Horde Horde Application Framework 3.3.5
Horde Horde Application Framework 3.3.6
Horde Horde Application Framework 3.1.8
Horde Horde Application Framework 3.0.5
Horde Horde Application Framework 3.0.8
Horde Horde Application Framework 1.3.2
Horde Horde Application Framework 1.3.5
Horde Horde Application Framework 2.2.4
Horde Horde Application Framework 2.2.5
Horde Horde Application Framework 3.0.1
1 EDB exploit
NA
CVE-2010-3694
Cross-site request forgery (CSRF) vulnerability in the Horde Application Framework prior to 3.3.9 allows remote malicious users to hijack the authentication of unspecified victims for requests to a preference form.
Horde Horde Application Framework 1.0.3
Horde Horde Application Framework 1.1.1
Horde Horde Application Framework 2.0
Horde Horde Application Framework 2.1
Horde Horde Application Framework 2.2.7
Horde Horde Application Framework 2.2.8
Horde Horde Application Framework 3.0.3
Horde Horde Application Framework 3.0.9
Horde Horde Application Framework 3.1.3
Horde Horde Application Framework 3.1.4
Horde Horde Application Framework 3.2.1
Horde Horde Application Framework 3.2.3
Horde Horde Application Framework 3.3.5
Horde Horde Application Framework 3.3.6
Horde Horde Application Framework 3.1.8
Horde Horde Application Framework 3.0.5
Horde Horde Application Framework 3.2
Horde Horde Application Framework 3.0.8
Horde Horde Application Framework 1.3.3
Horde Horde Application Framework 1.3.4
Horde Horde Application Framework 2.2
Horde Horde Application Framework 2.2.1
NA
CVE-2009-3701
Multiple cross-site scripting (XSS) vulnerabilities in the administration interface in Horde Application Framework prior to 3.3.6, Horde Groupware prior to 1.2.5, and Horde Groupware Webmail Edition prior to 1.2.5 allow remote malicious users to inject arbitrary web script or HTM...
Horde Application Framework 3.3.4
Horde Application Framework 2.1
Horde Application Framework 2.1.3
Horde Application Framework 3.0.4
Horde Application Framework 3.0
Horde Application Framework 3.0.9
Horde Application Framework 3.2.1
Horde Groupware 1.2.3
Horde Groupware
Horde Groupware 1.0.1
Horde Groupware 1.2
Horde Groupware 1.1.5
Horde Application Framework 2.2.4 Rc1
Horde Application Framework 2.2.5
Horde Application Framework 2.2.3
Horde Application Framework 3.0.1
Horde Application Framework 2.2.6
Horde Application Framework 2.0
Horde Application Framework 3.0.2
Horde Application Framework 3.0.3
Horde Application Framework 3.1
Horde Application Framework 3.1.1
4 EDB exploits
NA
CVE-2009-4363
Text_Filter/lib/Horde/Text/Filter/Xss.php in Horde Application Framework prior to 3.3.6, Horde Groupware prior to 1.2.5, and Horde Groupware Webmail Edition prior to 1.2.5 does not properly handle data: URIs, which allows remote malicious users to conduct cross-site scripting (XS...
Horde Application Framework 2.2.4 Rc1
Horde Application Framework 2.2.5
Horde Application Framework 2.2.6
Horde Application Framework 2.0
Horde Application Framework 3.0.7
Horde Application Framework 3.1
Horde Application Framework 3.3.4
Horde Application Framework 2.2.4
Horde Application Framework 2.1
Horde Application Framework 2.2
Horde Application Framework 3.0
Horde Application Framework 3.2.2
Horde Application Framework 3.2.1
Horde Application Framework 3.2
Horde Groupware 1.2.3
Horde Groupware 1.2
Horde Groupware 1.1.2
Horde Application Framework
Horde Application Framework 2.1.3
Horde Application Framework 2.2.1
Horde Application Framework 3.3
Horde Application Framework 3.0.6
NA
CVE-2007-1473
Cross-site scripting (XSS) vulnerability in framework/NLS/NLS.php in Horde Framework prior to 3.1.4 RC1, when the login page contains a language selection box, allows remote malicious users to inject arbitrary web script or HTML via the new_lang parameter to login.php.
Horde Horde Application Framework 1.2.5
Horde Horde Application Framework 1.2.6
Horde Horde Application Framework 1.2.7
Horde Horde Application Framework 2.2.1
Horde Horde Application Framework 2.2.3
Horde Horde Application Framework 3.0.0
Horde Horde Application Framework 3.0.1
Horde Horde Application Framework 3.0.8
Horde Horde Application Framework 3.0.9
Horde Horde Application Framework 1.2.0
Horde Horde Application Framework 1.2.8
Horde Horde Application Framework 1.3.3
Horde Horde Application Framework 2.2.4
Horde Horde Application Framework 2.2.5
Horde Horde Application Framework 3.0.10
Horde Horde Application Framework 3.0.2
Horde Horde Application Framework 3.1.0
Horde Horde Application Framework 3.1.1
Horde Horde Application Framework 1.2.3
Horde Horde Application Framework 1.2.4
Horde Horde Application Framework 2.1
Horde Horde Application Framework 2.2
1 EDB exploit
NA
CVE-2006-4255
Cross-site scripting (XSS) vulnerability in horde/imp/search.php in Horde IMP H3 prior to 4.1.3 allows remote malicious users to include arbitrary web script or HTML via multiple unspecified vectors related to folder names, as injected into the vfolder_label form field in the IMP...
Horde Horde 3.0.4 Rc1
Horde Horde 3.0.4 Rc2
Horde Horde 3.0.6
Horde Imp 2.2
Horde Imp 2.2.1
Horde Imp 2.2.8
Horde Imp 2.3
Horde Imp 3.2.4
Horde Imp 3.2.5
Horde Horde 3.0.1
Horde Horde 3.0.2
Horde Horde 3.0.9
Horde Horde 3.1
Horde Horde 3.0
Horde Horde 3.0.7
Horde Horde 3.0.8
Horde Imp 2.2.2
Horde Imp 2.2.3
Horde Imp 3.0
Horde Imp 3.1
Horde Horde 3.0.3
Horde Horde 3.0.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »