RSS   Vulnerabilities for 'Framework'   RSS

2008-01-10
 
CVE-2007-6018

CWE-264
 

 
IMP Webmail Client 4.1.5, Horde Application Framework 3.1.5, and Horde Groupware Webmail Edition 1.0.3 does not validate unspecified HTTP requests, which allows remote attackers to (1) delete arbitrary e-mail messages via a modified numeric ID or (2) "purge" deleted emails via a crafted email message.

 

 >>> Vendor: Horde 32 Products
Horde
IMP
Application framework
Passwd
Kronolith
Turba
Accounts
Chora
Forwards
Mnemo
Vaction
NAG
Kronolith h3
Horde application framework
Nag task list manager h3
Turba h3
Ingo h3
Groupware
Framework
Groupware webmail edition
Turba contact manager
Turba contact manager h3
Mnemo h3
Nag h3
Horde groupware
Gollem
Dynamic imp
Kronolith h4
Internet mail program
Horde image api
Horde image
Horde imp


Copyright 2019, cxsecurity.com

 

Back to Top