Roundcube Webmail Cross-Site Scripting Vulnerability

Roundcube Webmail is an open source browser-based IMAP client that supports address book management, message searching, spell checking and more. A security vulnerability exists in Roundcube Webmail versions prior to 1.4.14, versions prior to 1.5.4, and versions prior to 1.6.3, which stems from a...

PT-2023-20105 · Pixelgrade · Pixtypes

Name of the Vulnerable Software and Affected Versions: Pixelgrade PixTypes plugin versions prior to 1.4.14 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This means an attacker could potentially trick a user into performing unintended actions on a web...

PT-2021-5004 · Unknown +9 · Archive Tar +9

Name of the Vulnerable Software and Affected Versions: Archive Tar versions prior to 1.4.14 Description: The issue is related to incorrect link resolution before file access, potentially allowing an attacker to impact data integrity, availability, and confidentiality. It involves symlinks referri...

DEBIAN-CVE-2007-1870

lighttpd before 1.4.14 allows attackers to cause a denial of service crash via a request to a file whose mtime is 0, which results in a NULL pointer dereference...