openSUSE Security Update : horde3-imp (horde3-imp-5830)

This version upgrade of horde3-dimp to 4.3.11 fixes several issues including security related flaws, CVE-2012-0791 and adds new features. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

openSUSE Security Update : horde3 / horde3-dimp / horde3-imp (openSUSE-2012-112)

Warning: Official end of life for horde 3 is April 2012! Changes in horde3 : - version 3.3.13 - Fixed a XSS vulnerability CVE-2012-0909. - Added support for resetting passwords in LDAP. - Fixed compatibility with Firefox 10. Changes in horde3-imp : - Fixed XSS vulnerabilities CVE-2012-0791. -...

openSUSE Security Update : horde3-dimp (horde3-dimp-5829)

This version upgrade of horde3-dimp to 1.1.8 fixes several issues including security related flaws, CVE-2012-0791 and adds new features. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

openSUSE Security Update : horde3 (openSUSE-SU-2012:0286-1)

This version upgrade of horde3 to 3.3.13 fixes several issues including a security related flaw, CVE-2012-0909 and adds new features. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update horde3-583...

[SECURITY] [DSA 2853-1] horde3 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2853-1 [email protected] http://www.debian.org/security/ Luciano Bello February 05, 2014 http://www.debian.org/security/faq -...

Debian DSA-2853-1 : horde3 - remote code execution

Pedro Ribeiro from Agile Information Security found a possible remote code execution on Horde3, a web application framework. Unsanitized variables are passed to the unserialize PHP function. A remote attacker could specially-craft one of those variables allowing her to load and execute code...

Debian Security Advisory DSA 2853-1 (horde3 - remote code execution)

Pedro Ribeiro from Agile Information Security found a possible remote code execution on Horde3, a web application framework. Unsanitized variables are passed to the unserialize PHP function. A remote attacker could specially-craft one of those variables allowing her to load and execute code...

DSA-2853-1 horde3 - Remote code execution

Bulletin has no description...

Debian: Security Advisory (DSA-2853-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SuSE Update for horde3 openSUSE-SU-2012:0286-1 (horde3)

Check for the Version of horde OpenVAS Vulnerability Test $Id: gbsuse201202861.nasl 8267 2018-01-02 06:29:17Z teissa $ SuSE Update for horde3 openSUSE-SU-2012:0286-1 horde3 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program i...

openSUSE: Security Advisory for horde3 (openSUSE-SU-2012:0286-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

No summary available - BOX (important)

This version upgrade of horde3-dimp to 4.3.11 fixes several issues including security related flaws, CVE-2012-0791 and adds new features...

No summary available - BOX (important)

This version upgrade of horde3 to 3.3.13 fixes several issues including a security related flaw, CVE-2012-0909 and adds new features...

Debian: Security Advisory (DSA-2278-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 2278-1 (horde3)

The remote host is missing an update to horde3 announced via advisory DSA 2278-1. OpenVAS Vulnerability Test $Id: deb22781.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2278-1 horde3 Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

Debian DSA-2278-1 : horde3 - several vulnerabilities

It was discovered that horde3, the horde web application framework, is prone to a cross-site scripting attack and a cross-site request forgery. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory...

[SECURITY] [DSA 2278-1] horde3 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2278-1 [email protected] http://www.debian.org/security/ Steffen Joeris July 16, 2011 http://www.debian.org/security/faq -...

DSA-2278-1 horde3 - several

Bulletin has no description...

Debian DSA-1829-1 : sork-passwd-h3 - insufficient input sanitising

It was discovered that sork-passwd-h3, a Horde3 module for users to change their password, is prone to a cross-site scripting attack via the backend parameter. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...

Debian DSA-1897-1 : horde3 - insufficient input sanitization

Stefan Esser discovered that Horde, a web application framework providing classes for dealing with preferences, compression, browser detection, connection tracking, MIME, and more, is insufficiently validating and escaping user provided input. The HordeFormTypeimage form element allows to reuse a...