Horde Application Framework versions 3.2.4 and below suffer from a Horde_Form_Type_image arbitrary file overwrite vulnerability.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/81461/SE-2009-01.txt
Source: https://packetstormsecurity.com/files/81461/Horde-Application-Framework-Horde_Form_Type_image-File-Overwrite.html