cve/2009/CVE-2009-0932.md

CVE-2009-0932

Description

Directory traversal vulnerability in framework/Image/Image.php in Horde before 3.2.4 and 3.3.3 and Horde Groupware before 1.1.5 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the Horde_Image driver name.

POC

Reference

• http://securityreason.com/securityalert/8077

Github

• https://github.com/ARPSyndicate/kenzer-templates
• https://github.com/afzalbin64/accuknox-policy-temp
• https://github.com/kubearmor/policy-templates