Horde Groupware 1.1

This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Name	cpe:/a:horde:groupware:1.1

Detail
Vendor	Horde	First view	2009-09-13
Product	Groupware	Last view	2009-12-21
Version	1.1	Type	Application
Edition
Language
Update

CPE Product	cpe:/a:horde:groupware

Activity : Yearly

Related : CVE

	Date	Alert	Access Vector	Access Complexity	Authentification
4.3	2009-12-21	CVE-2009-4363	Network	Medium	None Requ...
4.3	2009-12-21	CVE-2009-3701	Network	Medium	None Requ...
4.3	2009-09-17	CVE-2009-3236	Network	Medium	None Requ...
10	2009-09-13	CVE-2008-7219	Network	Low	None Requ...
10	2009-09-13	CVE-2008-7218	Network	Low	None Requ...

CWE : Common Weakness Enumeration

%	id	Name
66% (2)	CWE-79	Failure to Preserve Web Page Structure ('Cross-site Scripting')
33% (1)	CWE-264	Permissions, Privileges, and Access Controls

Open Source Vulnerability Database (OSVDB)

id	Description
61338	Horde Xss.php Filter Bypass data:// URI XSS
61304	Horde Administration Interface admin/sqlshell.php PATH_INFO Parameter XSS
61303	Horde Administration Interface admin/cmdshell.php PATH_INFO Parameter XSS
61043	Horde Administration Interface admin/phpshell.php PATH_INFO Parameter XSS
58107	Horde Application Framework Form Library Image Form Field Arbitrary File Over...
Hide \| Show 2 More...

id	Description
42776	Horde Multiple Products Share Management Owner Validation Unspecified Issue
42775	Horde Multiple Products API Unspecified Privilege Escalation

ExploitDB Exploits

id	Description
10512	Horde 3.3.5 "PHP_SELF" XSS vulnerability

Copyright Security-Database 2006-2013 - Powered by themself ;) in 0.0377s

Facebook rss twitter linkedin mail