142 matches found
CVE-2026-58451
CVE-2026-58451 concerns Horde IMP prior to 7.0.1. A path traversal flaw in lib/Compose.php enables an authenticated attacker to read arbitrary server files by inserting traversal sequences after the CKEditor path prefix in img src URLs. The issue circumvents prefix validation by appending travers...
EUVD-2010-1659
Malware in sbrugna...
EUVD-2009-0927
Malware in sbrugna...
EUVD-2005-4075
Malware in sbrugna...
EUVD-2002-2003
Malware in sbrugna...
EUVD-2006-4243
Malware in sbrugna...
EUVD-2004-0583
Malware in sbrugna...
EUVD-2005-1322
Malware in sbrugna...
EUVD-2010-0494
Malware in sbrugna...
EUVD-2010-3679
Malware in sbrugna...
EUVD-2001-0729
Malware in sbrugna...
EUVD-2007-1509
Malware in sbrugna...
EUVD-2004-1440
Malware in sbrugna...
EUVD-2012-0822
Malware in sbrugna...
EUVD-2025-7227
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-30349
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Horde IMP through 6.2.27, as used with Horde Application Framework through 5.2.23, allows XSS that leads to account takeover via a crafted text/html e-mail...
CVE-2010-4778
Multiple cross-site scripting XSS vulnerabilities in fetchmailprefs.php in Horde IMP before 4.3.8, and Horde Groupware Webmail Edition before 1.2.7, allow remote attackers to inject arbitrary web script or HTML via the 1 username aka fmusername, 2 password aka fmpassword, or 3 server aka fmserver...
CVE-2002-2024
Horde IMP 2.2.7 allows remote attackers to obtain the full web root pathname via an HTTP request for 1 poppassd.php3, 2 login.php3?reason=chpass2, 3 spelling.php3, and 4 ldap.search.php3?ldapserv=nonsense which leaks the information in error messages...
Debian: Security Advisory (DLA-4113-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 4113-1] php-horde-imp security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4113-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler April 03, 2025 https://wiki.debian.org/LTS -...