Lucene search
+L

4 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-16906

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Horde Groupware 5.2.19-5.2.22, there is XSS via the URL field in a Calendar - New Event action. CVE-2017-16906 Note that Nessus relies on the presence of the...

5.4CVSS5.5AI score0.01086EPSS
Exploits1References2
Debian
Debian
added 2020/08/29 7:52 p.m.42 views

[SECURITY] [DLA 2351-1] php-horde-kronolith security update

Debian LTS Advisory DLA-2351-1 [email protected] https://www.debian.org/lts/security/ Mike Gabriel August 29, 2020 https://wiki.debian.org/LTS Package : php-horde-kronolith Version : 4.2.19-1+deb9u2 CVE ID : CVE-2017-16906 Debian Bug : 909737 In Horde Groupware, there has been an XSS...

5.4CVSS6AI score0.01086EPSS
Exploits1
CNVD
CNVD
added 2017/11/21 12:0 a.m.4 views

Horde Groupware Cross-Site Scripting Vulnerability (CNVD-2017-37742)

Horde Groupware is a free, enterprise-grade, browser-based collaboration suite. A cross-site scripting vulnerability exists in Horde Groupware version 5.2.19. A cross-site scripting attack can be performed via the URL field in the "Calendar - New Event" action, which can be used for remote code...

5.4CVSS7.3AI score0.01086EPSS
Exploits1References1
OSV
OSV
added 2017/11/20 8:29 p.m.3 views

DEBIAN-CVE-2017-16906

In Horde Groupware 5.2.19-5.2.22, there is XSS via the URL field in a "Calendar - New Event" action...

5.4CVSS6.2AI score0.01086EPSS
Exploits1References1
Rows per page
Query Builder