CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Horde: >> Framework >> 3.1.5 Security Vulnerabilities

CVE-2007-6018

IMP Webmail Client 4.1.5, Horde Application Framework 3.1.5, and Horde Groupware Webmail Edition 1.0.3 does not validate unspecified HTTP requests, which allows remote attackers to (1) delete arbitrary e-mail messages via a modified numeric ID or (2) "purge" deleted emails via a crafted email message.

CVSS Score

5.8

EPSS Score

0.011

Published

2008-01-11

Page 1

Vulnerabilities

Vulnerable Software

Horde: >> Framework >> 3.1.5 Security Vulnerabilities

Products

Pricing

Contact Us