Directory traversal vulnerability in framework/Image/Image.php in Horde prior to 3.2.4 and 3.3.3 and Horde Groupware prior to 1.1.5 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the Horde_Image driver name.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
debian horde 3.2.2 |
||
debian horde 3.3 |
||
debian horde groupware 1.1.1 |
||
debian horde groupware 1.1.2 |
||
debian horde 3.2 |
||
debian horde 3.2.3 |
||
debian horde groupware 1.1.3 |
||
debian horde groupware 1.1.4 |
||
debian horde 3.3.1 |
||
debian horde 3.3.2 |