Max CVSS | 7.5 | Min CVSS | 3.5 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2006-1260 | 5.0 |
Horde Application Framework 3.0.9 allows remote attackers to read arbitrary files via a null character in the url parameter in services/go.php, which bypasses a sanity check.
|
18-10-2018 - 16:31 | 19-03-2006 - 02:02 | |
CVE-2006-1491 | 7.5 |
Eval injection vulnerability in Horde Application Framework versions 3.0 before 3.0.10 and 3.1 before 3.1.1 allows remote attackers to execute arbitrary code via the help viewer.
|
20-07-2017 - 01:30 | 29-03-2006 - 22:02 | |
CVE-2005-4190 | 3.5 |
Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework before 3.0.8 allow remote authenticated users to inject arbitrary web script or HTML via multiple vectors, as demonstrated by (1) the identity field, (2) Category and
|
13-09-2011 - 04:00 | 13-12-2005 - 11:03 |