kb: technical
ABT: Group A
Situation
Vulnerabilities CVE-2019-12094 and CVE-2019-12095 were discovered in Horde web email components.
The exploit uses combination of XSS vulnerability in "Horde Groupware Webmail Edition" and CSRF vulnerability in "Horde Trean" (Web-based bookmarks application).
Plesk does not use any of these components.
Impact
Plesk is not affected.
Call to Action
No actions are required.
Comments
0 comments
Please sign in to leave a comment.