Unrated severityNVD Advisory· Published Jun 22, 2010· Updated Apr 29, 2026

CVE-2010-1638

Description

The IMP plugin in Horde allows remote attackers to bypass firewall restrictions and use Horde as a proxy to scan internal networks via a crafted request to an unspecified test script. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the product's installation documentation.

Affected products

Horde (software)/Horde
cpe:2.3:a:horde:horde:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

conference.hitb.org/hitbsecconf2010dxb/materials/D1%20-%20Laurent%20Oudot%20-%20Improving%20the%20Stealthiness%20of%20Web%20Hacking.pdfnvd
www.openwall.com/lists/oss-security/2010/05/21/2nvd
www.openwall.com/lists/oss-security/2010/05/25/2nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000