Description
Horde Groupware Webmail Edition is a free, enterprise ready, browser-based communication suite. Pedro Ribeiro reported a remote code execution bug that is affecting Horde versions from at least horde 3.1.x to 5.1.1.
Remediation
Upgrade to the latest version of Horde.
References
Related Vulnerabilities
WordPress Plugin Bookly #1 WordPress Booking Plugin (Lite Version) Cross-Site Scripting (14.4)
Magento Cryptographic Issues Vulnerability (CVE-2019-7886)
MySQL CVE-2020-14672 Vulnerability (CVE-2020-14672)
WordPress Plugin WPMktgEngine Security Bypass (3.7.6)
WordPress Plugin Integration for WooCommerce and QuickBooks Cross-Site Scripting (1.1.8)