CNNVD-202512-233 Information
Dec 02, 2025
cve
CNNVD ID
CNNVD-202512-233
Related CVE
- CNNVD Published: 2025-12-02
Description (Chinese)
Horde Groupware是Horde开源的一个协作软件套件。 Horde Groupware v5.2.22版本存在信息泄露漏洞,该漏洞源于未经验证的攻击者可通过发送HTTP请求确定有效账户是否存在。
Description (English)
Horde Groupware is a collaborative software package from the Holde Open Source. Version Horde Groupware v5.2.22 contains a leaking loophole, which originates from an uncertified attacker ’ s request to determine the existence of a valid account by sending HTTP.
Hazard Level
High
Vulnerability Type
信息泄露
Affected Vendor
Horde
Published
2025-12-02
Last Modified
2026-02-24
References
https://www.incibe.es/en/incibe-cert/notices/aviso/disclosure-sensitive-information-horde-groupware