This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Name cpe:/a:horde:horde_application_framework:2.2.6
Detail
Vendor Horde First view 2005-12-13
Product Horde Application Framework Last view 2010-11-09
Version 2.2.6 Type Application
Edition  
Language  
Update  
 
CPE Product cpe:/a:horde:horde_application_framework

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
6.8 2010-11-09 CVE-2010-3694 Network Medium None Requ...
4.3 2010-11-09 CVE-2010-3077 Network Medium None Requ...
4.3 2007-03-16 CVE-2007-1473 Network Medium None Requ...
3.5 2005-12-13 CVE-2005-4190 Network Medium Requires ...

CWE : Common Weakness Enumeration

%idName
66% (2)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
33% (1)CWE-352Cross-Site Request Forgery (CSRF)

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:12816DSA-2278-1 horde3 -- several

Open Source Vulnerability Database (OSVDB)

idDescription
69159Horde Application Framework Preference Form CSRF
67839Horde Application Framework util/icon_browser.php subdir Parameter XSS
65089Horde Groupware / Horde Groupware Webmail Edition Unspecified CSRF
33084Horde NLS.php Language Selection new_lang Parameter XSS
21607Horde Framework CSV Import Multiple Field Arbitrary Script Execution
Hide | Show 1 More...
idDescription
21606Horde Framework Multiple Field XSS

OpenVAS Exploits

idDescription
2011-08-03Name : Debian Security Advisory DSA 2278-1 (horde3)
File : nvt/deb_2278_1.nasl
2010-12-02Name : Fedora Update for horde FEDORA-2010-16525
File : nvt/gb_fedora_2010_16525_horde_fc14.nasl
2010-11-16Name : Fedora Update for horde FEDORA-2010-16555
File : nvt/gb_fedora_2010_16555_horde_fc13.nasl
2010-11-16Name : Fedora Update for horde FEDORA-2010-16592
File : nvt/gb_fedora_2010_16592_horde_fc12.nasl
2010-09-07Name : Horde Application Framework 'icon_browser.php' Cross-Site Scripting Vulnerabi...
File : nvt/gb_horde_43001.nasl
Hide | Show 3 More...
idDescription
2009-10-10Name : SLES9: Security update for horde
File : nvt/sles9p5014522.nasl
2008-01-17Name : Debian Security Advisory DSA 1406-1 (horde3)
File : nvt/deb_1406_1.nasl
2008-01-17Name : Debian Security Advisory DSA 1033-1 (horde3)
File : nvt/deb_1033_1.nasl

Nessus® Vulnerability Scanner

idDescription
2011-07-19Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2278.nasl - Type : ACT_GATHER_INFO
2010-11-07Name : The remote Fedora host is missing a security update.
File : fedora_2010-16525.nasl - Type : ACT_GATHER_INFO
2010-11-07Name : The remote Fedora host is missing a security update.
File : fedora_2010-16555.nasl - Type : ACT_GATHER_INFO
2010-11-05Name : The remote Fedora host is missing a security update.
File : fedora_2010-16592.nasl - Type : ACT_GATHER_INFO
2010-09-07Name : The remote web server hosts a PHP script that is prone to a cross- site scrip...
File : horde_icon_browser_subdir_xss.nasl - Type : ACT_ATTACK
Hide | Show 6 More...
idDescription
2009-09-24Name : The remote SuSE 9 host is missing a security-related patch.
File : suse9_11488.nasl - Type : ACT_GATHER_INFO
2007-11-12Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1406.nasl - Type : ACT_GATHER_INFO
2007-10-17Name : The remote openSUSE host is missing a security update.
File : suse_horde-1600.nasl - Type : ACT_GATHER_INFO
2007-10-17Name : The remote openSUSE host is missing a security update.
File : suse_horde-3089.nasl - Type : ACT_GATHER_INFO
2007-03-16Name : The remote web server contains a PHP application that is vulnerable to a cros...
File : horde_new_lang_xss.nasl - Type : ACT_ATTACK
2006-10-14Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1033.nasl - Type : ACT_GATHER_INFO