Horde: >> Horde Application Framework >> 3.3.10 Security Vulnerabilities
The framework/Util/lib/Horde/Variables.php script in the Util library in Horde before 5.1.1 allows remote attackers to conduct object injection attacks and execute arbitrary PHP code via a crafted serialized object in the _formvars form.
CVSS Score
7.5
EPSS Score
0.814
Published
2014-04-01