Lucene search
HistoryFeb 03, 2009 - 11:30 p.m.
CVE-2009-0413
roundcube
webmail
roundcubemail
xss
vulnerability
remote attackers
html
email
5.4 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
66.0%
Cross-site scripting (XSS) vulnerability in RoundCube Webmail (roundcubemail) 0.2 stable allows remote attackers to inject arbitrary web script or HTML via the background attribute embedded in an HTML e-mail message.
| CPE | Name | Operator | Version |
|---|---|---|---|
| roundcube:webmail | roundcube webmail | eq | 0.2 |
References
Social References
More
Related
prion
prion
Cross site scripting
2009-02-03 23:30:00
openvas
openvas
Fedora Core 10 FEDORA-2009-1204 (roundcubemail)
2009-02-10 00:00:00
Fedora Core 9 FEDORA-2009-1256 (roundcubemail)
2009-02-10 00:00:00
Fedora Core 9 FEDORA-2009-1256 (roundcubemail)
2009-02-10 00:00:00
debiancve
debiancve
CVE-2009-0413
2009-02-03 23:30:00
ubuntucve
ubuntucve
CVE-2009-0413
2009-02-03 00:00:00
nessus
nessus
Fedora 10 : roundcubemail-0.2-7.stable.fc10 (2009-1204)
2009-04-23 00:00:00
Fedora 9 : roundcubemail-0.2-7.stable.fc9 (2009-1256)
2009-02-05 00:00:00
seebug
seebug
Roundcube Webmail้ฎไปถๆถๆฏHTMLๆณจๅ
ฅๆผๆด
2009-12-04 00:00:00
freebsd
freebsd
roundcube -- webmail script insertion and php code injection
2009-01-21 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: roundcubemail-0.2-7.stable.fc10
2009-02-05 02:08:18
[SECURITY] Fedora 9 Update: roundcubemail-0.2-7.stable.fc9
2009-02-05 02:12:50
[SECURITY] Fedora 10 Update: roundcubemail-0.2.2-4.fc10
2009-12-02 04:27:37
5.4 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
66.0%
Related for CVE-2009-0413