Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-30349

Опубликовано: 21 мар. 2025
Источник: debian
EPSS Средний

Описание

Horde IMP through 6.2.27, as used with Horde Application Framework through 5.2.23, allows XSS that leads to account takeover via a crafted text/html e-mail message with an onerror attribute (that may use base64-encoded JavaScript code), as exploited in the wild in March 2025.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
php-horde-impunfixedpackage
php-horde-impignoredbookwormpackage

Примечания

  • https://web.archive.org/web/20250321152616/https://lists.horde.org/archives/imp/Week-of-Mon-20250317/057781.html

  • https://web.archive.org/web/20250321162434/https://lists.horde.org/archives/imp/Week-of-Mon-20250317/057784.html

  • https://github.com/horde/imp/pull/15/

  • https://github.com/horde/imp/commit/8a89d755e0356e7785e555d85c881fd4774e973e (FRAMEWORK_5_2)

EPSS

Процентиль: 95%
0.18609
Средний

Связанные уязвимости

ubuntu логотип

CVE-2025-30349

CVSS3: 7.2
ubuntu
11 месяцев назад

Horde IMP through 6.2.27, as used with Horde Application Framework through 5.2.23, allows XSS that leads to account takeover via a crafted text/html e-mail message with an onerror attribute (that may use base64-encoded JavaScript code), as exploited in the wild in March 2025.

nvd логотип

CVE-2025-30349

CVSS3: 7.2
nvd
11 месяцев назад

Horde IMP through 6.2.27, as used with Horde Application Framework through 5.2.23, allows XSS that leads to account takeover via a crafted text/html e-mail message with an onerror attribute (that may use base64-encoded JavaScript code), as exploited in the wild in March 2025.

github логотип

GHSA-mchq-vv84-m9gr

CVSS3: 7.2
github
11 месяцев назад

Horde IMP through 6.2.27, as used with Horde Application Framework through 5.2.23, allows XSS that leads to account takeover via a crafted text/html e-mail message with an onerror attribute (that may use base64-encoded JavaScript code), as exploited in the wild in March 2025.

EPSS

Процентиль: 95%
0.18609
Средний