4 matches found
[SECURITY] [DLA 2352-1] php-horde-gollem security update
Debian LTS Advisory DLA-2352-1 [email protected] https://www.debian.org/lts/security/ Mike Gabriel August 29, 2020 https://wiki.debian.org/LTS Package : php-horde-gollem Version : 3.0.10-1+deb9u2 CVE ID : CVE-2017-15235 The File Manager gollem module in Horde Groupware has allowed remot...
CVE-2017-15235
The CVE-2017-15235 issue affects the Horde Groupware File Manager (gollem) module: version 3.0.11 in Horde Groupware 5.2.21 allows remote unauthenticated file downloads via a crafted fn parameter that maps to the exact filename. The vulnerability enables remote attackers to bypass Horde authentic...
Horde Groupware 5.2.21 - Unauthorized File Download
Vulnerability Summary The following advisory describes an unauthorized file download vulnerability found in Horde Groupware version 5.2.21. Horde Groupware Webmail Edition is “a free, enterprise ready, browser based communication suite. Users can read, send and organize email messages and manage...
Horde Groupware 5.2.21 - Unauthorized File Download
Horde Groupware 5.2.21 - Unauthorized File Download Vulnerability Summary The following advisory describes an unauthorized file download vulnerability found in Horde Groupware version 5.2.21. Horde Groupware Webmail Edition is “a free, enterprise ready, browser based communication suite. Users ca...