Horde : Security Vulnerabilities, CVEs, (Information Leak) CVSS score >= 2
Horde IMP 4.3.6 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests.
Max CVSS
5.0
EPSS Score
0.33%
Published
2010-01-29
Updated
2017-08-17
1 vulnerabilities found