Lucene search
K

16 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.45 views

Horde 3.3.5 - "PHP_SELF" XSS vulnerability

No description provided by source. ============================================= INTERNET SECURITY AUDITORS ALERT 2009-012 - Original release date: October 13th, 2009 - Last revised: December 16th, 2009 - Discovered by: Juan Galiana Lara - CVE ID: CVE-2009-3701 - Severity: 6.3/10 CVSS Base Score...

4.3CVSS6.4AI score0.04832EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2010/07/01 12:0 a.m.35 views

Fedora 13 : horde-3.3.6-1.fc13 (2010-5563)

Upgrade to 3.3.6 - Fixes a lot of security bugs Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

6.4CVSS5.3AI score0.41263EPSS
Exploits21References18
Tenable Nessus
Tenable Nessus
added 2010/07/01 12:0 a.m.48 views

Fedora 12 : horde-3.3.6-1.fc12 (2010-5520)

Upgrade to 3.3.6 - Fixes a lot of security bugs Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

6.4CVSS5.3AI score0.41263EPSS
Exploits21References18
Tenable Nessus
Tenable Nessus
added 2010/07/01 12:0 a.m.45 views

Fedora 11 : horde-3.3.6-1.fc11 (2010-5483)

Upgrade to 3.3.6 - Fixes a lot of security bugs Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

6.4CVSS5.3AI score0.41263EPSS
Exploits21References18
OpenVAS
OpenVAS
added 2010/04/06 12:0 a.m.29 views

Fedora Update for horde FEDORA-2010-5483

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.4CVSS7.8AI score0.41263EPSS
Exploits21References2
Tenable Nessus
Tenable Nessus
added 2010/02/24 12:0 a.m.32 views

Debian DSA-1966-1 : horde3 - insufficient input sanitising

Several vulnerabilities have been found in horde3, the horde web application framework. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-3237 It has been discovered that horde3 is prone to cross-site scripting attacks via crafted number preferences o...

4.3CVSS4.9AI score0.04832EPSS
Exploits9References7
Tenable Nessus
Tenable Nessus
added 2010/02/15 12:0 a.m.36 views

openSUSE Security Update : horde (horde-1947)

This update of horde fixes : - CVE-2009-3236: CVSS v2 Base Score: 5.0: Overwrite arbitrary files and execute PHP code - CVE-2009-3237: CVSS v2 Base Score: 5.0: Cross-Site Scripting XSS - CVE-2009-3701: CVSS v2 Base Score: 4.3: Cross-Site Scripting XSS - CVE-2009-4363: CVSS v2 Base Score: 4.3:...

4.3CVSS5.6AI score0.04832EPSS
Exploits9References5
OpenVAS
OpenVAS
added 2010/01/11 12:0 a.m.29 views

Debian: Security Advisory (DSA-1966-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.5AI score0.04832EPSS
Exploits9References3
Debian
Debian
added 2010/01/07 10:33 a.m.44 views

[SECURITY] [DSA 1966-1] New horde3 packages fix cross-site scripting

------------------------------------------------------------------------ Debian Security Advisory DSA-1966-1 [email protected] http://www.debian.org/security/ Steffen Joeris January 07, 2010 http://www.debian.org/security/faq -...

4.3CVSS6.2AI score0.04832EPSS
Exploits9
securityvulns
securityvulns
added 2010/01/07 12:0 a.m.94 views

[SECURITY] [DSA 1966-1] New horde3 packages fix cross-site scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1966-1 [email protected] http://www.debian.org/security/ Steffen Joeris January 07, 2010 http://www.debian.org/security/faq -...

4.3CVSS0.3AI score0.04832EPSS
Exploits9
CVE
CVE
added 2009/12/21 4:0 p.m.79 views

CVE-2009-3701

CVE-2009-3701 affects Horde Application Framework before 3.3.6, Horde Groupware before 1.2.5, and Horde Groupware Webmail Edition before 1.2.5. It enables remote XSS via PATH_INFO to admin/phpshell.php, admin/cmdshell.php, or admin/sqlshell.php, related to PHP_SELF. Impact is arbitrary script/HTM...

4.3CVSS5.5AI score0.04832EPSS
Exploits8References13Affected Software2
Exploit DB
Exploit DB
added 2009/12/17 12:0 a.m.39 views

Horde 3.3.5 - 'PHP_SELF' Cross-Site Scripting

============================================= INTERNET SECURITY AUDITORS ALERT 2009-012 - Original release date: October 13th, 2009 - Last revised: December 16th, 2009 - Discovered by: Juan Galiana Lara - CVE ID: CVE-2009-3701 - Severity: 6.3/10 CVSS Base Score...

4.3CVSS6.4AI score0.04832EPSS
Exploits8
exploitpack
exploitpack
added 2009/12/17 12:0 a.m.51 views

Horde 3.3.5 - PHP_SELF Cross-Site Scripting

Horde 3.3.5 - PHPSELF Cross-Site Scripting ============================================= INTERNET SECURITY AUDITORS ALERT 2009-012 - Original release date: October 13th, 2009 - Last revised: December 16th, 2009 - Discovered by: Juan Galiana Lara - CVE ID: CVE-2009-3701 - Severity: 6.3/10 CVSS Bas...

4.3CVSS6AI score0.04832EPSS
Exploits8
Packet Storm
Packet Storm
added 2009/12/17 12:0 a.m.49 views

Horde 3.3.5 Cross Site Scripting

============================================= INTERNET SECURITY AUDITORS ALERT 2009-012 - Original release date: October 13th, 2009 - Last revised: December 16th, 2009 - Discovered by: Juan Galiana Lara - CVE ID: CVE-2009-3701 - Severity: 6.3/10 CVSS Base Score...

4.3CVSS6.4AI score0.04832EPSS
Exploits8
0day.today
0day.today
added 2009/12/17 12:0 a.m.59 views

Horde 3.3.5 "PHP_SELF" XSS vulnerability

Exploit for unknown platform in category web applications ======================================== Horde 3.3.5 "PHPSELF" XSS vulnerability ======================================== ============================================= INTERNET SECURITY AUDITORS ALERT 2009-012 - Original release date:...

7.1AI score0.04832EPSS
Exploits8
securityvulns
securityvulns
added 2009/12/17 12:0 a.m.61 views

[ISecAuditors Security Advisories] Horde 3.3.5 "PHP_SELF" Cross-Site Scripting vulnerability

============================================= INTERNET SECURITY AUDITORS ALERT 2009-012 - Original release date: October 13th, 2009 - Last revised: December 16th, 2009 - Discovered by: Juan Galiana Lara - CVE ID: CVE-2009-3701 - Severity: 6.3/10 CVSS Base Score...

4.3CVSS0.4AI score0.04832EPSS
Exploits8
Rows per page
Query Builder