Secunia Logo  
 Vulnerability InformationVulnerability ScanningCommunityBlog - new entry!Corporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Information > Secunia Advisories > Advisories by Product > Horde Application Framework 3.x
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About


Secunia PSI WorldMap 		 
Vulnerability Report: Horde Application Framework 3.x
This vulnerability report for Horde Application Framework 3.x contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.

If you have information about a new or an existing vulnerability in Horde Application Framework 3.x then you are more than welcome to contact us.


Table of Contents

1. Product Summary Only

2. Secunia Advisory Statistics (All time)
2.1. Statistics for 2009
2.2. Statistics for 2008
2.3. Statistics for 2007
2.4. Statistics for 2006
2.5. Statistics for 2005
2.6. Statistics for 2004
2.7. Statistics for 2003

3. List of Secunia Advisories (All time)
3.1. List for 2009
3.2. List for 2008
3.3. List for 2007
3.4. List for 2006
3.5. List for 2005
3.6. List for 2004
3.7. List for 2003

4. Send Feedback
 
Vendor, Links, and Unpatched Vulnerabilities

Vendor Horde Project

Product Link View Here (Link to external site)

Affected By 19 Secunia advisories
38 Vulnerabilities

Monitor Product Receive alerts for this product

Unpatched 0% (0 of 19 Secunia advisories)

Most Critical Unpatched
There are no unpatched Secunia advisories affecting this product, when all vendor patches are applied..




19 Secunia Advisories in 2003-2009
Secunia has issued a total of 19 Secunia advisories in 2003-2009 for Horde Application Framework 3.x. Currently, 0% (0 out of 19) are marked as unpatched.

More information about the specific Secunia advisories affecting Horde Application Framework 3.x can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.



Horde Application Framework "PHP_SELF" Cross-Site Scripting Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 4 in 2009. 274 views.
Release Date:
2009-12-16		 Secunia Advisory ID:
SA37709		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
Some vulnerabilities have been reported in Horde Application Framework, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

Horde Application Framework Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 4 in 2009. 1,129 views.
Release Date:
2009-09-14		 Secunia Advisory ID:
SA36665		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
System access
 Where:
From remote
Short Description:
Some vulnerabilities have been reported in the Horde Application Framework, which can be exploited by malicious people to conduct script insertion and cross-site scripting attacks and by malicious users to compromise a vulnerable system. [Read More]

Horde / Horde Groupware Cross-Site Scripting and File Inclusion Vulnerability
Vendor Patch. Secunia Advisory 3 of 4 in 2009. 2,358 views.
Release Date:
2009-01-28		 Secunia Advisory ID:
SA33695		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
Exposure of sensitive information
 Where:
From remote
Short Description:
Some vulnerabilities have been reported in Horde and Horde Groupware, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose potentially sensitive information. [Read More]

Horde Products Cross-Site Scripting Vulnerability
Vendor Patch. Secunia Advisory 4 of 4 in 2009. 1,788 views.
Release Date:
2009-01-21		 Secunia Advisory ID:
SA33521		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in various Horde products, which can potentially be exploited to conduct cross-site scripting attacks. [Read More]

Horde Products MIME Library and HTML Message Script Insertion Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 5 in 2008. 3,715 views.
Release Date:
2008-09-10		 Secunia Advisory ID:
SA31842		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
Some vulnerabilities have been reported in various Horde products, which can be exploited by malicious people to conduct script insertion attacks. [Read More]

Horde Products Cross-Site Scripting and Script Insertion
Vendor Patch. Secunia Advisory 2 of 5 in 2008. 2,699 views.
Release Date:
2008-06-16		 Secunia Advisory ID:
SA30697		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
Some vulnerabilities have been reported in various Horde products, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site scripting attacks. [Read More]

Horde "theme" Local File Inclusion Vulnerability
Vendor Patch. Secunia Advisory 3 of 5 in 2008. 8,235 views.
Release Date:
2008-03-10		 Secunia Advisory ID:
SA29286		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Exposure of system information
Exposure of sensitive information
System access
 Where:
From remote
Short Description:
A vulnerability has been reported in various Horde products, which can be exploited by malicious users to disclose sensitive information and potentially compromise a vulnerable system. [Read More]

Multiple Horde Products Security Bypass
Vendor Patch. Secunia Advisory 4 of 5 in 2008. 7,487 views.
Release Date:
2008-01-10		 Secunia Advisory ID:
SA28382		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Security Bypass
 Where:
From remote
Short Description:
Some vulnerabilities have been reported in various Horde products, which can be exploited by malicious people to bypass certain security restrictions. [Read More]

IMP Mail Deletion Security Bypass Vulnerability
Vendor Patch. Secunia Advisory 5 of 5 in 2008. 7,307 views.
Release Date:
2008-01-10		 Secunia Advisory ID:
SA28020		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Security Bypass
Cross Site Scripting
Manipulation of data
 Where:
From remote
Short Description:
Secunia Research has discovered a vulnerability in IMP Webmail Client and Horde Groupware Webmail Edition, which can be exploited by malicious people to bypass certain security restrictions and manipulate data. [Read More]

Horde Language Selection Cross-Site Scripting Vulnerability
Vendor Patch. Secunia Advisory 1 of 1 in 2007. 10,983 views.
Release Date:
2007-03-16		 Secunia Advisory ID:
SA24528		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
Manipulation of data
 Where:
From remote
Short Description:
A vulnerability has been reported in Horde Application Framework, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

Horde Phishing and Cross-Site Scripting Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 5 in 2006. 12,622 views.
Release Date:
2006-08-17		 Secunia Advisory ID:
SA21500		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
Spoofing
 Where:
From remote
Short Description:
Some vulnerabilities have been reported in Horde, which can be exploited by malicious people to conduct phishing and cross-site scripting attacks. [Read More]

Horde Cross-Site Scripting Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 5 in 2006. 11,171 views.
Release Date:
2006-07-07		 Secunia Advisory ID:
SA20954		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
Moritz Naumann has reported some vulnerabilities in Horde, which be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

Horde Cross-Site Scripting Vulnerabilities
Vendor Patch. Secunia Advisory 3 of 5 in 2006. 10,443 views.
Release Date:
2006-06-15		 Secunia Advisory ID:
SA20661		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
Some vulnerabilities have been reported in Horde, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

Horde Help Viewer "module" PHP Code Execution Vulnerability
Vendor Patch. Secunia Advisory 4 of 5 in 2006. 13,434 views.
Release Date:
2006-04-03		 Secunia Advisory ID:
SA19485		 Solution Status:
Vendor Patch
Criticality:
 Impact:
System access
 Where:
From remote
Short Description:
A vulnerability has been discovered in Horde, which can be exploited by malicious people to compromise a vulnerable system. [Read More]

Horde "url" Disclosure of Sensitive Information Vulnerability
Vendor Patch. Secunia Advisory 5 of 5 in 2006. 13,499 views.
Release Date:
2006-03-15		 Secunia Advisory ID:
SA19246		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Exposure of sensitive information
Cross Site Scripting
 Where:
From remote
Short Description:
Paul Craig has discovered a vulnerability in Horde, which can be exploited by malicious people to disclose sensitive information. [Read More]

Horde Script Insertion Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 4 in 2005. 11,102 views.
Release Date:
2005-12-12		 Secunia Advisory ID:
SA17970		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
SEC Consult has reported some vulnerabilities in Horde, which can be exploited by malicious users to conduct script insertion attacks. [Read More]

Horde MIME Viewers Script Insertion Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 4 in 2005. 11,221 views.
Release Date:
2005-11-23		 Secunia Advisory ID:
SA17703		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
Daniel Schreckling has reported some vulnerabilities in Horde, which can be exploited by malicious people to conduct script insertion attacks. [Read More]

Horde Page Title Cross-Site Scripting Vulnerability
Vendor Patch. Secunia Advisory 3 of 4 in 2005. 10,831 views.
Release Date:
2005-03-29		 Secunia Advisory ID:
SA14730		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in Horde, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

Horde "url" and "group" Cross-Site Scripting Vulnerabilities
Vendor Patch. Secunia Advisory 4 of 4 in 2005. 8,325 views.
Release Date:
2005-01-14		 Secunia Advisory ID:
SA13860		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
Robert Fly has reported two vulnerabilities in Horde, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]






Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs (open positions) | About Secunia
Copyright Secunia 2002-2009