Andrea Cardaci

**Name of the Vulnerable Software and Affected Versions** proxy.py versions prior to 2.3.1 **Description** The issue arises from a boolean confusion in the `before upstream connection` function within the `AuthPlugin` in `http/proxy/auth.py`, where it incorrectly accepts Proxy-Authorization header data due to a logical error involving 'and' versus 'or' operations. **Recommendations** For versions prior to 2.3.1, update to version 2.3.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Horde Groupware Webmail Edition version 5.2.22 **Description** This issue allows remote attackers to execute local PHP files on affected installations. Authentication is required to exploit this issue. The specific flaw exists within the `edit.php` file. When parsing the `params[template]` parameter, the process does not properly validate a user-supplied path prior to using it in file operations. An attacker can leverage this in conjunction with other issues to execute code in the context of the `www-data` user. **Recommendations** For Horde Groupware Webmail Edition version 5.2.22, as a temporary workaround, consider disabling the `edit.php` file or restricting access to it until a patch is available. Additionally, restrict the use of the `params[template]` parameter to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Horde Groupware Webmail Edition version 5.2.22 **Description** This issue allows remote attackers to create arbitrary files on affected installations. Authentication is required to exploit this. The flaw exists within the `add.php` file and results from the lack of proper validation of user-supplied data, allowing the upload of arbitrary files. An attacker can leverage this, in conjunction with other issues, to execute code in the context of the `www-data` user. **Recommendations** For Horde Groupware Webmail Edition version 5.2.22, consider disabling the `add.php` file as a temporary workaround until a patch is available. Restrict access to this file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Horde Groupware Webmail Edition version 5.2.22 **Description** The issue allows injection of arbitrary PHP code via CSV data, leading to remote code execution. **Recommendations** For Horde Groupware Webmail Edition version 5.2.22, consider disabling CSV data import functionality until a patch is available. Restrict access to the vulnerable CSV import module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.