• Horde Groupware Webmail Edition is a free, enterprise ready, browser-based communication suite. Pedro Ribeiro reported a remote code execution bug that is affecting Horde versions from at least horde 3.1.x to 5.1.1.

• Upgrade to the latest version of Horde.

• • Remote code execution in horde
  • Fix commit
  • Changelog

• 

• CVE-2014-1691

• CWE-94

• CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

• Code Execution Missing Update

• WordPress Plugin s2Member Pro 'Coupon Code' Field HTML Injection (111216)
• WordPress Plugin Portfolio Gallery-Photo Gallery Cross-Site Scripting (1.5.7)
• WordPress Plugin 3xSocializer Cross-Site Scripting (0.98.22)
• WordPress Plugin Fast Secure Contact Form Cross-Site Scripting (4.0.37)
• WordPress Plugin Redux Framework Multiple Cross-Site Scripting Vulnerabilities (3.6.0.2)