CyberSec.Space Logo
返回 CVE 浏览器

CVE-2010-3694

MEDIUM
6.8
CVSS Severity Score
EPSS Score0.0410%
EPSS Percentile25.11th
Published2010年11月9日
Last Modified2026年4月29日

Vulnerability Description

Cross-site request forgery (CSRF) vulnerability in the Horde Application Framework before 3.3.9 allows remote attackers to hijack the authentication of unspecified victims for requests to a preference form.

Affected Platforms (CPE)

📦
Horde

Horde Application Framework

<= 3.3.8
📦
Horde

Horde Application Framework

= 1.0.3
📦
Horde

Horde Application Framework

= 1.1.1
📦
Horde

Horde Application Framework

= 1.3.0
📦
Horde

Horde Application Framework

= 1.3.1
📦
Horde

Horde Application Framework

= 1.3.2
📦
Horde

Horde Application Framework

= 1.3.3
📦
Horde

Horde Application Framework

= 1.3.4
📦
Horde

Horde Application Framework

= 1.3.5
📦
Horde

Horde Application Framework

= 2.0
📦
Horde

Horde Application Framework

= 2.0
📦
Horde

Horde Application Framework

= 2.0
📦
Horde

Horde Application Framework

= 2.0
📦
Horde

Horde Application Framework

= 2.1
📦
Horde

Horde Application Framework

= 2.2
📦
Horde

Horde Application Framework

= 2.2.1
📦
Horde

Horde Application Framework

= 2.2.2
📦
Horde

Horde Application Framework

= 2.2.3
📦
Horde

Horde Application Framework

= 2.2.4
📦
Horde

Horde Application Framework

= 2.2.5
📦
Horde

Horde Application Framework

= 2.2.6
📦
Horde

Horde Application Framework

= 2.2.6
📦
Horde

Horde Application Framework

= 2.2.7
📦
Horde

Horde Application Framework

= 2.2.8
📦
Horde

Horde Application Framework

= 2.2.9
📦
Horde

Horde Application Framework

= 3.0
📦
Horde

Horde Application Framework

= 3.0
📦
Horde

Horde Application Framework

= 3.0
📦
Horde

Horde Application Framework

= 3.0
📦
Horde

Horde Application Framework

= 3.0
📦
Horde

Horde Application Framework

= 3.0
📦
Horde

Horde Application Framework

= 3.0.1
📦
Horde

Horde Application Framework

= 3.0.2
📦
Horde

Horde Application Framework

= 3.0.3
📦
Horde

Horde Application Framework

= 3.0.3
📦
Horde

Horde Application Framework

= 3.0.4
📦
Horde

Horde Application Framework

= 3.0.4
📦
Horde

Horde Application Framework

= 3.0.4
📦
Horde

Horde Application Framework

= 3.0.5
📦
Horde

Horde Application Framework

= 3.0.5
📦
Horde

Horde Application Framework

= 3.0.5
📦
Horde

Horde Application Framework

= 3.0.6
📦
Horde

Horde Application Framework

= 3.0.6
📦
Horde

Horde Application Framework

= 3.0.7
📦
Horde

Horde Application Framework

= 3.0.8
📦
Horde

Horde Application Framework

= 3.0.9
📦
Horde

Horde Application Framework

= 3.0.10
📦
Horde

Horde Application Framework

= 3.0.11
📦
Horde

Horde Application Framework

= 3.0.12
📦
Horde

Horde Application Framework

= 3.1
📦
Horde

Horde Application Framework

= 3.1
📦
Horde

Horde Application Framework

= 3.1
📦
Horde

Horde Application Framework

= 3.1
📦
Horde

Horde Application Framework

= 3.1.1
📦
Horde

Horde Application Framework

= 3.1.2
📦
Horde

Horde Application Framework

= 3.1.3
📦
Horde

Horde Application Framework

= 3.1.4
📦
Horde

Horde Application Framework

= 3.1.4
📦
Horde

Horde Application Framework

= 3.1.5
📦
Horde

Horde Application Framework

= 3.1.6
📦
Horde

Horde Application Framework

= 3.1.7
📦
Horde

Horde Application Framework

= 3.1.8
📦
Horde

Horde Application Framework

= 3.1.9
📦
Horde

Horde Application Framework

= 3.2
📦
Horde

Horde Application Framework

= 3.2
📦
Horde

Horde Application Framework

= 3.2
📦
Horde

Horde Application Framework

= 3.2
📦
Horde

Horde Application Framework

= 3.2
📦
Horde

Horde Application Framework

= 3.2
📦
Horde

Horde Application Framework

= 3.2.1
📦
Horde

Horde Application Framework

= 3.2.2
📦
Horde

Horde Application Framework

= 3.2.3
📦
Horde

Horde Application Framework

= 3.2.4
📦
Horde

Horde Application Framework

= 3.2.5
📦
Horde

Horde Application Framework

= 3.3
📦
Horde

Horde Application Framework

= 3.3
📦
Horde

Horde Application Framework

= 3.3.1
📦
Horde

Horde Application Framework

= 3.3.2
📦
Horde

Horde Application Framework

= 3.3.3
📦
Horde

Horde Application Framework

= 3.3.4
📦
Horde

Horde Application Framework

= 3.3.4
📦
Horde

Horde Application Framework

= 3.3.5
📦
Horde

Horde Application Framework

= 3.3.6
📦
Horde

Horde Application Framework

= 3.3.7

References & Advisories

🔗 http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050408.html
🔗 http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050423.html
🔗 http://lists.horde.org/archives/announce/2010/000557.html
🔗 http://secunia.com/advisories/42140
🔗 https://bugzilla.redhat.com/show_bug.cgi?id=630687
🔗 http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050408.html
🔗 http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050423.html
🔗 http://lists.horde.org/archives/announce/2010/000557.html

相关漏洞威胁

CVE-2006-14917.5

Eval injection vulnerability in Horde Application Framework versions 3.0 before 3.0.10 and 3.1 before 3.1.1 allows remote attacker...

CVE-2007-14746.8

Argument injection vulnerability in the cleanup cron script in Horde Project Horde and IMP before Horde Application Framework 3.1....

CVE-2007-60185.8

IMP Webmail Client 4.1.5, Horde Application Framework 3.1.5, and Horde Groupware Webmail Edition 1.0.3 does not validate unspecifi...

CVE-2006-12605.0

Horde Application Framework 3.0.9 allows remote attackers to read arbitrary files via a null character in the url parameter in ser...