5.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
46.6%
Roundcube Webmail before 1.3.15 and 1.4.8 allows stored XSS in HTML messages during message display via a crafted SVG document. This issue has been fixed in 1.4.8 and 1.3.15.