25 matches found
EUVD-2007-1468
Malware in sbrugna...
IMP 安全漏洞
IMP is an open source web-based webmail system from Horde. A security vulnerability exists in IMP version 6.2.27 and earlier, which originates from a specially crafted HTML email that could lead to account takeover...
Horde IMP 2.2.x Session Hijacking Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3525/info IMP is a powerful web-based mail interface/client developed by members of the Horde project. Encoded HTML tags are not stripped from requests to access 'status.php3'. It is possible for a remote attacker to...
Horde Kronolith Detection
The remote web server hosts Kronolith, a PHP-based calendar application from the Horde Project. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid61448; scriptversion"1.5"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01"; scriptnameenglish:"Hord...
IMP Webmail stored cross-site scripting vulnerability and fixes-vulnerability warning-the black bar safety net
Affected version: Horde IMP 4.3.7 vulnerability description: BUGTRAQ ID: 4 3 5 1 5 IMP is a Web-based powerful e-mail program, by the Horde project group developed, can be used in Linux/Unix or Windows operating system. IMP Webmail is not correctly filtered submitted to the fetchmailprefs. php...
[SECURITY] Fedora 12 Update: imp-4.3.7-1.fc12
IMP is the Internet Messaging Program, one of the Horde applications. It provides webmail access to IMAP and POP3 accounts. The Horde Project writes web applications in PHP and releases them under Open Source licenses. For more information including help with IMP please visit http://www.horde.org...
[SECURITY] Fedora 12 Update: turba-2.3-1.fc12
Turba is the Horde contact management application, which allows access to and storage of personal contacts including name, email address, phone number, and other easily customizable fields. Turba integrates with IMP Horde's webmail application as its address book. The Horde Project writes web...
[SECURITY] Fedora 13 Update: imp-4.3.7-1.fc13
IMP is the Internet Messaging Program, one of the Horde applications. It provides webmail access to IMAP and POP3 accounts. The Horde Project writes web applications in PHP and releases them under Open Source licenses. For more information including help with IMP please visit http://www.horde.org...
Horde IMP Webmail客户端跨站脚本和HTML注入漏洞
BUGTRAQ ID: 33492 CVECAN ID: CVE-2009-0930 IMP是一款基于Web的强大的邮件程序,由Horde项目组开发,可使用在Linux/Unix或者Windows操作系统下。 IMP没有正确地过滤对smime.php、pgp.php和message.php模块的输入参数便返回给了用户,远程攻击者可以通过向这些模块提交恶意请求执行跨站脚本和HTML注入攻击,导致在用户浏览器会话中执行任意HTML和脚本代码。 Horde IMP 4.3.x Horde IMP 4.2.x 厂商补丁: Horde -----...
[SECURITY] Fedora 8 Update: imp-4.1.6-1.fc8
IMP is the Internet Messaging Program, one of the Horde applications. It provides webmail access to IMAP and POP3 accounts. The Horde Project writes web applications in PHP and releases them under Open Source licenses. For more information including help with IMP please visit http://www.horde.org...
[SECURITY] Fedora 7 Update: turba-2.1.7-1.fc7
Turba is the Horde contact management application, which allows access to and storage of personal contacts including name, email address, phone number, and other easily customizable fields. Turba integrates with IMP Horde's webmail application as its address book. The Horde Project writes web...
[SECURITY] Fedora 7 Update: imp-4.1.6-1.fc7
IMP is the Internet Messaging Program, one of the Horde applications. It provides webmail access to IMAP and POP3 accounts. The Horde Project writes web applications in PHP and releases them under Open Source licenses. For more information including help with IMP please visit http://www.horde.org...
Horde IMP及Groupware Webmail Edition多个输入验证漏洞
BUGTRAQ ID: 27223 CVECAN ID: CVE-2007-6018 IMP是一款基于Web的强大的邮件程序,它由Horde项目组开发。可使用在Linux/Unix或者Microsoft Windows操作系统下。 IMP在处理HTML的数据时存在漏洞,远程攻击者可能利用此漏洞非授权操作邮件。 IMP Webmail客户端和Groupware Webmail Edition的HTML过滤器没有过滤掉frame和frameset...
CVE-2007-1474
Argument injection vulnerability in the cleanup cron script in Horde Project Horde and IMP before Horde Application Framework 3.1.4 allows local users to delete arbitrary files and possibly gain privileges via multiple space-delimited pathnames...
CVE-2007-1474
Argument injection vulnerability in the cleanup cron script in Horde Project Horde and IMP before Horde Application Framework 3.1.4 allows local users to delete arbitrary files and possibly gain privileges via multiple space-delimited pathnames...
Design/Logic Flaw
Argument injection vulnerability in the cleanup cron script in Horde Project Horde and IMP before Horde Application Framework 3.1.4 allows local users to delete arbitrary files and possibly gain privileges via multiple space-delimited pathnames...
CVE-2007-1474
CVE-2007-1474 affects Horde Project Horde and IMP prior to Horde Application Framework 3.1.4. The vulnerability is an argument injection flaw in the cleanup cron script that can let local users delete arbitrary files and potentially gain privileges by supplying multiple space-delimited pathnames....
hordeGraphic.txt
Hello All, PRELUDE What is HORDE? http://www.horde.org/about/ The Mission The Horde Project is about creating high quality Open Source applications, based on PHP and the Horde Framework. The guiding principles of the Horde Project are to create solid standards-based applications using intelligent...
IMP Detection
This script detects whether the remote host is running IMP and extracts version numbers and locations of any instances found. IMP is a PHP-based webmail package from The Horde Project that provides access to mail accounts via POP3 or IMAP. See http://www.horde.org/imp/ for more information. OpenV...
Horde IMP Detection
This script detects whether the remote host is running Horde IMP and extracts version numbers and locations of any instances found. IMP is a PHP-based webmail package from The Horde Project that provides access to mail accounts via POP3 or IMAP. SPDX-FileCopyrightText: 2005 George A. Theall Some...