This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:horde:groupware:1.2::webmail
Detail
VendorHordeFirst view 2009-09-17
ProductGroupwareLast view 2011-04-04
Version1.2TypeApplication
Editionwebmail 
Language 
Update 
 
CPE Productcpe:/a:horde:groupware

Activity : Yearly

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentification
4.32011-04-04CVE-2010-4778NetworkMediumNone Requ...
4.32011-04-04CVE-2010-3693NetworkMediumNone Requ...
4.32011-03-31CVE-2010-3695NetworkMediumNone Requ...
4.32009-12-21CVE-2009-4363NetworkMediumNone Requ...
4.32009-12-21CVE-2009-3701NetworkMediumNone Requ...
Hide | Show 2 More...
 DateAlertAccess VectorAccess ComplexityAuthentification
4.32009-09-17CVE-2009-3237NetworkMediumNone Requ...
4.32009-09-17CVE-2009-3236NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
100% (6)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')

Open Source Vulnerability Database (OSVDB)

idDescription
68267Horde DIMP Mailbox Page Folder Label XSS
68261Horde IMP fetchmailprefs.php fm_id Parameter XSS
61338Horde Xss.php Filter Bypass data:// URI XSS
61304Horde Administration Interface admin/sqlshell.php PATH_INFO Parameter XSS
61303Horde Administration Interface admin/cmdshell.php PATH_INFO Parameter XSS
Hide | Show 4 More...
idDescription
61043Horde Administration Interface admin/phpshell.php PATH_INFO Parameter XSS
58109Horde Application Framework Numeric Preference Type XSS
58108Horde Application Framework MIME Viewer Text Part Rendering XSS
58107Horde Application Framework Form Library Image Form Field Arbitrary File Over...

ExploitDB Exploits

idDescription
10512Horde 3.3.5 "PHP_SELF" XSS vulnerability