High severity7.5NVD Advisory· Published Oct 11, 2017· Updated Jun 17, 2026
CVE-2017-15235
CVE-2017-15235
Description
The File Manager (gollem) module 3.0.11 in Horde Groupware 5.2.21 allows remote attackers to bypass Horde authentication for file downloads via a crafted fn parameter that corresponds to the exact filename.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:horde:groupware:5.2.21:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:horde:groupware:5.2.21:*:*:*:*:*:*:*
- (no CPE)range: = 5.2.21
Patches
Vulnerability mechanics
References
2- blogs.securiteam.com/index.php/archives/3454nvdExploitThird Party Advisory
- lists.debian.org/debian-lts-announce/2020/08/msg00050.htmlnvd
News mentions
0No linked articles in our index yet.