Published: 05/11/2019 Updated: 18/08/2020

CVSS v2 Base Score: 2.6 | Impact Score: 2.9 | Exploitability Score: 4.9

CVSS v3 Base Score: 5.3 | Impact Score: 3.6 | Exploitability Score: 1.6

VMScore: 231

Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N

Horde Groupware Web mail 5.1.2 has CSRF with requests to change permissions

Vulnerable Product	Search on Vulmon	Subscribe to Product
horde groupware 5.1.2
opensuse opensuse 13.2
opensuse opensuse 13.1
debian debian linux 8.0
debian debian linux 10.0
debian debian linux 9.0

Debian Bug report logs - #730110 php-horde: CVE-2013-6364 CVE-2013-6365 Package: php-horde; Maintainer for php-horde is Horde Maintainers <team+debian-horde-team@trackerdebianorg>; Source for php-horde is src:php-horde (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@inutilorg> Date: Thu, 21 Nov 2013 14: ...

Debian Bug report logs - #730979 php-horde: CVE-2013-6364 CVE-2013-6365 Package: php-horde-turba; Maintainer for php-horde-turba is Horde Maintainers <team+debian-horde-team@trackerdebianorg>; Source for php-horde-turba is src:php-horde-turba (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@inutilorg> Da ...

Horde version 512 suffers from cross site request forgery and cross site scripting vulnerabilities ...

CWE-352 http://archives.neohapsis.com/archives/bugtraq/2013-11/0013.html https://bugzilla.suse.com/show_bug.cgi?id=CVE-2013-6365 https://security-tracker.debian.org/tracker/CVE-2013-6365 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-6365 https://www.securityfocus.com/archive/1/529590 https://packetstormsecurity.com/files/cve/CVE-2013-6365 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=730110 https://nvd.nist.gov

CVE-2013-6365

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect