CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Horde: >> Horde Mime Viewer >> 1.0.0 Security Vulnerabilities

CVE-2022-26874

lib/Horde/Mime/Viewer/Ooo.php in Horde Mime_Viewer before 2.2.4 allows XSS via an OpenOffice document, leading to account takeover in Horde Groupware Webmail Edition. This occurs after XSLT rendering.

CVSS Score

5.4

EPSS Score

0.002

Published

2022-03-11

Page 1

Vulnerabilities

Vulnerable Software

Horde: >> Horde Mime Viewer >> 1.0.0 Security Vulnerabilities

Products

Pricing

Contact Us