Internet Mail Program

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:horde:internet_mail_program:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorHorde (11d5bec1-2c1f-5ad3-b7a5-41ab167a139d)
ProductInternet Mail Program (1ca0701b-82ca-51f9-b9c2-948ba4f15434)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:deb/debian/php-horde-imp purl2cpe 2026-06-01 10:15:53.130186
pkg:deb/ubuntu/php-horde-imp purl2cpe 2026-06-01 10:15:53.130189
pkg:github/horde/imp purl2cpe 2026-06-01 10:15:53.130192
pkg:rpm/fedora/php-horde-imp purl2cpe 2026-06-01 10:15:53.130194

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2014-4946 vulnerable 2026-06-03 14:34:05.048788 Details available
Multiple cross-site scripting (XSS) vulnerabilities in Horde Internet Mail Program (IMP) before 6.1.8, as used in Horde Groupware Webmail Edition before 5.1.5, allow remote attackers to inject arbitrary web script or HTML via (1) unspecified flags or (2) a mailbox name in the dynamic mailbox view.
Published: 2014-07-14T14:00:00.000Z
Updated: 2024-09-17T03:03:19.100Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2014-4945 vulnerable 2026-06-03 14:34:05.036877 Details available
Multiple cross-site scripting (XSS) vulnerabilities in Horde Internet Mail Program (IMP) before 6.1.8, as used in Horde Groupware Webmail Edition before 5.1.5, allow remote attackers to inject arbitrary web script or HTML via an unspecified flag in the basic (1) mailbox or (2) message view.
Published: 2014-07-14T14:00:00.000Z
Updated: 2024-09-17T04:14:56.484Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.