{"uuid": "59166003-abcb-4434-80a9-31c7a6f610f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30287", "type": "published-proof-of-concept", "source": "https://t.me/cKure/9634", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 Zero-Day: A remote code execution vulnerability in the open-source Horde Webmail client can allow to take over servers by sending a specially crafted email.\nResearchers from SonarSource discovered a remote code execution vulnerability (CVE-2022-30287) in the open-source Horde Webmail client. Horde Webmail allows users to manage contacts, the flaw could be exploited by an authenticated user of a Horde instance to take over an email server by sending a specially crafted email to a victim.\n\n\u201cThe vulnerability can be exploited with a single GET request which can be triggered via Cross-Site-Request-Forgery.  For this, an attacker can craft a malicious email and include an external image that when rendered exploits the vulnerability without further interaction of a victim: the only requirement is to have a victim open the malicious email.\u201d reads the advisory published by SonarSource.\n\nhttps://blog.sonarsource.com/horde-webmail-rce-via-email/", "creation_timestamp": "2022-06-02T07:41:02.000000Z"}