Information on source package php-horde

Available versions

ReleaseVersion
jessie (security)5.2.1+debian0-2+deb8u3
stretch5.2.13+debian0-1
buster5.2.17+debian0-1
sid5.2.17+debian0-1

Open issues

BugjessiestretchbustersidDescription
CVE-2017-17781undeterminedundeterminedundeterminedundeterminedIn Horde Groupware through 5.2.22, SQL Injection exists via the group ...
CVE-2017-16908undeterminedundeterminedundeterminedundeterminedIn Horde Groupware 5.2.19, there is XSS via the Name field during ...
CVE-2017-16907undeterminedundeterminedundeterminedundeterminedIn Horde Groupware 5.2.19, there is XSS via the Color field in a Create ...
CVE-2017-16906undeterminedundeterminedundeterminedundeterminedIn Horde Groupware 5.2.19, there is XSS via the URL field in a ...

Resolved issues

BugDescription
TEMP-0785364-25992BXSS in group administration
CVE-2016-2228Cross-site scripting (XSS) vulnerability in ...
CVE-2015-7984Multiple cross-site request forgery (CSRF) vulnerabilities in Horde ...
CVE-2013-6365CSRF edit.php
CVE-2013-6364XSS and CSRF search.php
CVE-2013-1090The SUSE horde5 package before 5.0.2-2.4.1 sets incorrect ownership ...

Security announcements

DSA / DLADescription
DSA-3497-1php-horde - security update
DSA-3391-1php-horde - security update

Search for package or bug name: Reporting problems