Situation
CVE-2022-30287 vulnerability was discovered in Horde.
Impact
The discovered code vulnerability allows an authenticated user of a Horde instance to execute arbitrary code on the underlying server.
Call to action
The vulnerability was fixed in Horde Turba version 4.2.27 and shipped in Plesk Obsidian 18.0.44 #3. Consider updating the Plesk server as per the following article.