Debian Security Advisory 1519-1 – It was discovered that the Horde web application framework permits arbitrary file inclusion by a remote attacker through the theme preference parameter.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/64620/dsa-1519-1.txt
Source: https://packetstormsecurity.com/files/64620/Debian-Linux-Security-Advisory-1519-1.html