Projects / Horde Application Framework / Releases / Major security fixes

RSS All releases tagged Major security fixes

  •  23 Nov 2010 03:07

Release Notes: An XSS vulnerability when viewing details of a vCard was fixed. Exporting of recurrence exceptions to vCalendar 1.0 was fixed. Various synchronization problems were fixed, and there were other minor bugfixes and improvements.

  •  14 Sep 2009 12:17
Avatar

Release Notes: This is a security release that fixes a vulnerability that allows overwriting of local files and fixes two XSS vulnerabilities.

  •  10 Sep 2008 12:04

Release Notes: This release fixes unescaped output and improves the XSS filter.

  •  28 Mar 2006 10:54

Release Notes: A potential remote code execution hole has been fixed in the help viewer. This hole is present in all Horde versions after 3.0. It is not present in 2.x and earlier releases. Additionally, some minor bugs have been fixed.

  •  28 Mar 2006 10:52

Release Notes: A potential remote code execution hole has been fixed in the help viewer. This hole is present in all Horde versions after 3.0. It is not present in 2.x and earlier releases. Additional changes: export and synchronization of events across daylight saving time changes has been fixed. The MySQL session handler and support for Internet Explorer 7 and Opera Mini browsers have been improved. Some minor bugs have been fixed.

  •  11 Dec 2005 13:17

Release Notes: Cross site scripting vulnerabilities in the preferences, data import, and cell phone field type templates have been fixed. The holes closed were only exploitable by authenticated users. The weather.com portal block has been fixed.

  •  22 Nov 2005 12:13

Release Notes: Cross site scripting vulnerabilities in the gzip/tar and css MIME viewers have been fixed. The MySQL session handler has been fixed.

Screenshot

Project Spotlight

OpenSIPS

A mature implementation of a SIP server/proxy.

Screenshot

Project Spotlight

libmodbus (stable)

A multiplatform Modbus library.