CVE List

CVE-2019-12094

Moderate 6.1

Horde Groupware Webmail Edition through 5.2.22 allows XSS via an admin/user.php?form=update_f&user_name= or admin/user.php?form=remove_f&user_name= or admin/config/diff.php?app= URI, related to the Tag Cloud feature.

Published October 24, 2019.

Affected software

Get alerts for Horde Groupware

Reference links