Remote code execution in Horde Groupware Webmail 5.2.22 and 5.2.17 via unsanitized input leading to PHP backdoor creation
Reporter | Title | Published | Views | Family All 20 |
---|---|---|---|---|
![]() | Horde Form Shell Upload | 10 Apr 201900:00 | – | packetstorm |
![]() | [SECURITY] [DSA 4468-1] php-horde-form security update | 21 Jun 201908:26 | – | debian |
![]() | [SECURITY] [DLA 1822-1] php-horde-form security update | 16 Jun 201921:42 | – | debian |
![]() | [SECURITY] [DSA 4468-1] php-horde-form security update | 21 Jun 201908:26 | – | debian |
![]() | CVE-2019-9858 | 29 May 201917:29 | – | debiancve |
![]() | Debian: Security Advisory (DSA-4468-1) | 22 Jun 201900:00 | – | openvas |
![]() | Horde Groupware Webmail <= 5.2.22 RCE Vulnerability - Windows | 4 Jun 201900:00 | – | openvas |
![]() | Debian: Security Advisory (DLA-1822-1) | 17 Jun 201900:00 | – | openvas |
![]() | Horde Groupware Webmail <= 5.2.22 RCE Vulnerability - Linux | 4 Jun 201900:00 | – | openvas |
![]() | Debian DLA-1822-1 : php-horde-form security update | 17 Jun 201900:00 | – | nessus |
Source | Link |
---|---|
seclists | www.seclists.org/bugtraq/2019/Jun/31 |
packetstormsecurity | www.packetstormsecurity.com/files/152476/Horde-Form-Shell-Upload.html |
ssd-disclosure | www.ssd-disclosure.com/ |
lists | www.lists.debian.org/debian-lts-announce/2019/06/msg00007.html |
debian | www.debian.org/security/2019/dsa-4468 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo