Lucene search
K

10 matches found

OpenVAS
OpenVAS
added 2020/08/30 12:0 a.m.22 views

Debian: Security Advisory (DLA-2350-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.4CVSS5.6AI score0.01752EPSS
Exploits1References4
OSV
OSV
added 2015/11/19 8:59 p.m.13 views

CVE-2015-7984

Multiple cross-site request forgery CSRF vulnerabilities in Horde before 5.2.8, Horde Groupware before 5.2.11, and Horde Groupware Webmail Edition before 5.2.11 allow remote attackers to hijack the authentication of administrators for requests that execute arbitrary 1 commands via the cmd paramet...

6.7AI score
Exploits0References6
UbuntuCve
UbuntuCve
added 2015/11/19 8:59 p.m.20 views

CVE-2015-7984

Multiple cross-site request forgery CSRF vulnerabilities in Horde before 5.2.8, Horde Groupware before 5.2.11, and Horde Groupware Webmail Edition before 5.2.11 allow remote attackers to hijack the authentication of administrators for requests that execute arbitrary 1 commands via the cmd paramet...

6.8CVSS6.4AI score0.04116EPSS
Exploits5References2
CVE
CVE
added 2015/11/19 8:0 p.m.80 views

CVE-2015-7984

CVE-2015-7984 cites CSRF vulnerabilities in Horde before 5.2.8, Horde Groupware before 5.2.11, and Horde Groupware Webmail Edition before 5.2.11 that allow remote attackers to hijack administrator authentication to perform requests executing arbitrary commands, SQL queries, or PHP code (via cmd, ...

6.8CVSS6.6AI score0.04116EPSS
Exploits5References6Affected Software2
Debian CVE
Debian CVE
added 2015/11/19 8:0 p.m.23 views

CVE-2015-7984

Multiple cross-site request forgery CSRF vulnerabilities in Horde before 5.2.8, Horde Groupware before 5.2.11, and Horde Groupware Webmail Edition before 5.2.11 allow remote attackers to hijack the authentication of administrators for requests that execute arbitrary 1 commands via the cmd paramet...

6.8CVSS7.2AI score0.04116EPSS
Exploits5
Packet Storm
Packet Storm
added 2015/11/19 12:0 a.m.53 views

Horde Groupware 5.2.10 Cross Site Request Forgery

Advisory ID: HTB23272 Product: Horde Groupware Vendor: http://www.horde.org Vulnerable Versions: 5.2.10 and probably prior Tested Version: 5.2.10 Advisory Publication: September 30, 2015 without technical details Vendor Notification: September 30, 2015 Vendor Patch: October 22, 2015 Public...

6.8CVSS0.8AI score0.04116EPSS
Exploits5
0day.today
0day.today
added 2015/11/19 12:0 a.m.67 views

Horde Groupware 5.2.10 Cross Site Request Forgery Vulnerability

Horde Groupware version 5.2.10 suffers from a cross site request forgery vulnerability. Product: Horde Groupware Vendor: http://www.horde.org Vulnerable Versions: 5.2.10 and probably prior Tested Version: 5.2.10 Advisory Publication: September 30, 2015 without technical details Vendor Notificatio...

6.8CVSS0.6AI score0.04116EPSS
Exploits5
exploitpack
exploitpack
added 2015/11/19 12:0 a.m.52 views

Horde Groupware 5.2.10 - Cross-Site Request Forgery

Horde Groupware 5.2.10 - Cross-Site Request Forgery Advisory ID: HTB23272 Product: Horde Groupware Vendor: http://www.horde.org Vulnerable Versions: 5.2.10 and probably prior Tested Version: 5.2.10 Advisory Publication: September 30, 2015 without technical details Vendor Notification: September 3...

6.8CVSS0.7AI score0.04116EPSS
Exploits5
Exploit DB
Exploit DB
added 2015/11/19 12:0 a.m.72 views

Horde Groupware 5.2.10 - Cross-Site Request Forgery

Advisory ID: HTB23272 Product: Horde Groupware Vendor: http://www.horde.org Vulnerable Versions: 5.2.10 and probably prior Tested Version: 5.2.10 Advisory Publication: September 30, 2015 without technical details Vendor Notification: September 30, 2015 Vendor Patch: October 22, 2015 Public...

6.8CVSS5.4AI score0.04116EPSS
Exploits5
OpenVAS
OpenVAS
added 2015/11/03 12:0 a.m.25 views

Debian Security Advisory DSA 3391-1 (php-horde - security update)

It was discovered that the web-based administration interface in the Horde Application Framework did not guard against Cross-Site Request Forgery CSRF attacks. As a result, other, malicious web pages could cause Horde applications to perform actions as the Horde user. The oldstable distribution...

6.8CVSS0.3AI score0.04116EPSS
Exploits5References1
Rows per page
Query Builder