Full title: Horde Webmail 5.2.22 XSS / CSRF / SQL Injection / Code Execution Exploit 
Category: web applications
Platform: php
Horde Webmail version 5.2.22 suffers from code execution, cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.

# 0day.today @ http://0day.today/