Lucene search
Alpine Linux Development TeamALPINE:CVE-2018-19206HistoryNov 12, 2018 - 5:29 p.m.
CVE-2018-19206
2018-11-1217:29:00
Alpine Linux Development Team
security.alpinelinux.org
9
0.617 Medium
EPSS
Percentile
97.8%
steps/mail/func.inc in Roundcube before 1.3.8 has XSS via crafted use of <svg><style>, as demonstrated by an onload attribute in a BODY element, within an HTML attachment.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | 3.10-community | noarch | roundcubemail | < 1.3.8-r0 | UNKNOWN |
| Alpine | 3.8-community | noarch | roundcubemail | < 1.3.8-r0 | UNKNOWN |
| Alpine | 3.9-community | noarch | roundcubemail | < 1.3.8-r0 | UNKNOWN |
Related
cve
cve
CVE-2018-19206
2018-11-12 17:29:00
debian
debian
[SECURITY] [DSA 4344-1] roundcube security update
2018-11-24 20:51:14
[SECURITY] [DSA 4344-1] roundcube security update
2018-11-24 20:51:00
nessus
nessus
Debian DSA-4344-1 : roundcube - security update
2018-11-26 00:00:00
openvas
openvas
Roundcube Webmail < 1.3.8 XSS Vulnerability
2018-11-19 00:00:00
Debian: Security Advisory (DSA-4344-1)
2018-11-23 00:00:00
checkpoint_advisories
checkpoint_advisories
Roundcube Webmail func.inc Cross-site Scripting (CVE-2018-19206)
2022-09-18 00:00:00
osv
osv
roundcube - security update
2018-11-24 00:00:00
CVE-2018-19206
2018-11-12 17:29:00
debiancve
debiancve
CVE-2018-19206
2018-11-12 17:29:00
ubuntucve
ubuntucve
CVE-2018-19206
2018-11-12 00:00:00
cvelist
cvelist
CVE-2018-19206
2018-11-12 17:00:00
prion
prion
Design/Logic Flaw
2018-11-12 17:29:00