CVE-2013-6275

MEDIUM

Horde Groupware < 5.1.2 - CSRF

Title source: rule

Description

Multiple CSRF issues in Horde Groupware Webmail Edition 5.1.2 and earlier in basic.php.

Exploits (1)

exploitdb WORKING POC

by Marcela Benetrix · htmlwebappsphp

https://www.exploit-db.com/exploits/29274

View Code ZIP pw:eip

References (7)

[Broken Link] http://archives.neohapsis.com/archives/bugtraq/2013-10/0134.html

[Exploit, Third Party Advisory, VDB Entry] http://www.exploit-db.com/exploits/29274

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/63377

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1029285

[Third Party Advisory] https://bugs.gentoo.org/show_bug.cgi?id=CVE-2013-6275

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/88321

[Third Party Advisory] https://security-tracker.debian.org/tracker/CVE-2013-6275

Scores

CVSS v3 6.5

EPSS 0.0166

EPSS Percentile 82.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Details

CWE

CWE-352

Status published

Products (4)

debian/debian_linux 8.0

debian/debian_linux 9.0

debian/debian_linux 10.0

horde/groupware < 5.1.2

Published Nov 05, 2019

Tracked Since Feb 18, 2026