CVE-2014-1691HIGHCVSS 7.5PoCfixed in php-horde-util 2.3.0-1 (bookworm)2014
CVE-2014-1691 [HIGH] CVE-2014-1691: php-horde-util - The framework/Util/lib/Horde/Variables.php script in the Util library in Horde b...
The framework/Util/lib/Horde/Variables.php script in the Util library in Horde before 5.1.1 allows remote attackers to conduct object injection attacks and execute arbitrary PHP code via a crafted serialized object in the _formvars form.
Scope: local
bookworm: resolved (fixed in 2.3.0-1)
bullseye: resolved (fixed in 2.3.0-1)
sid: resolved (fixed in 2.3.0-1)
debian