Lucene search
HistoryDec 12, 2007 - 1:46 a.m.
CVE-2007-6321
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.5
Confidence
High
EPSS
0.012
Percentile
85.3%
Cross-site scripting (XSS) vulnerability in RoundCube webmail 0.1rc2, 2007-12-09, and earlier versions, when using Internet Explorer, allows remote attackers to inject arbitrary web script or HTML via style sheets containing expression commands.
Affected configurations
Node
roundcubewebmailRange≤0.1rc2
Related
fedora
fedora
[SECURITY] Fedora 9 Update: roundcubemail-0.2-0.alpha.fc9
2008-06-14 04:17:22
[SECURITY] Fedora 8 Update: roundcubemail-0.2-0.alpha.fc8
2008-06-14 04:18:53
[SECURITY] Fedora 7 Update: roundcubemail-0.2-0.alpha.fc7.1
2008-06-14 04:16:05
openvas
openvas
Fedora Update for roundcubemail FEDORA-2008-5342
2009-02-17 00:00:00
Fedora Update for roundcubemail FEDORA-2008-5333
2009-02-17 00:00:00
Fedora Update for roundcubemail FEDORA-2008-5333
2009-02-17 00:00:00
nessus
nessus
Fedora 8 : roundcubemail-0.2-0.alpha.fc8 (2008-5342)
2008-06-16 00:00:00
Fedora 7 : roundcubemail-0.2-0.alpha.fc7.1 (2008-5315)
2008-06-16 00:00:00
Fedora 9 : roundcubemail-0.2-0.alpha.fc9 (2008-5333)
2008-06-16 00:00:00
ubuntucve
ubuntucve
CVE-2007-6321
2007-12-12 00:00:00
prion
prion
Cross site scripting
2007-12-12 01:46:00
cve
cve
CVE-2007-6321
2007-12-12 01:46:00
debiancve
debiancve
CVE-2007-6321
2007-12-12 01:46:00
cvelist
cvelist
CVE-2007-6321
2007-12-12 01:00:00
exploitdb
exploitdb
Roundcube Webmail 0.1 - CSS Expression Input Validation
2007-11-10 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.5
Confidence
High
EPSS
0.012
Percentile
85.3%
Related for NVD:CVE-2007-6321