PhpGroupWare Multiple Input Validation Vulnerabilities Network Vulnerability

Summary

phpGroupWare is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to disclose sensitive information, steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. phpGroupWare 0.9.16.12 is affected other versions may also be vulnerable.

References

http://www.phpgroupware.org/
http://www.securityfocus.com/bid/35761

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4414

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apache Rave User Information Disclosure Vulnerability
11in1 Cross Site Request Forgery and Local File Include Vulnerabilities
A Really Simple Chat Multiple XSS Vulnerabilities
Apache ActiveMQ 'Cron Jobs' Cross Site Scripting Vulnerability
Adobe ColdFusion Multiple Cross Site Scripting Vulnerabilities

phpGroupWare Multiple Input Validation Vulnerabilities

Take action and discover your vulnerabilities