Description
Horde Groupware Webmail Edition is a free, enterprise ready, browser-based communication suite. Pedro Ribeiro reported a remote code execution bug that is affecting Horde versions from at least horde 3.1.x to 5.1.1.
Remediation
Upgrade to the latest version of Horde.
References
Related Vulnerabilities
WordPress Plugin WPGateway Privilege Escalation (3.5)
WordPress Plugin Migration, Backup, Staging-WPvivid SQL Injection (0.9.52)
Squid Data Processing Errors Vulnerability (CVE-2014-7141)
Envoy Proxy Out-of-bounds Write Vulnerability (CVE-2024-34364)
SharePoint Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-42309)