Exploit for CVE-2025-68461

CVE-2025-68461 Roundcube Webmail before 1.5.12 and 1.6 befor...

EUVD-2025-204036

Roundcube Webmail before 1.5.12 and 1.6 before 1.6.12 is prone to a information disclosure vulnerability in the HTML style sanitizer...

CVE-2025-68461

Roundcube Webmail before 1.5.12 and 1.6 before 1.6.12 is prone to a Cross-Site-Scripting XSS vulnerability via the animate tag in an SVG document...

CVE-2025-68461

CVE-2025-68461 affects Roundcube Webmail: cross-site scripting via the animate element in an SVG document, impacting Roundcube Webmail < 1.6.12 and

PT-2025-51991

Name of the Vulnerable Software and Affected Versions Roundcube versions prior to 1.5.12 Roundcube versions prior to 1.6.12 Description Roundcube Webmail contains a Cross-Site Scripting XSS issue stemming from the use of the animate tag within SVG documents. This allows attackers to execute...

SUSE CVE-2014-0133

Heap-based buffer overflow in the SPDY implementation in nginx 1.3.15 before 1.4.7 and 1.5.x before 1.5.12 allows remote attackers to execute arbitrary code via a crafted request...

HestiaCP 注入漏洞

HestiaCP is a lightweight and powerful control panel for modern networks. A command injection vulnerability exists in HestiaCP versions prior to 1.5.12, which stems from a Sed injection vulnerability. An authenticated, low-privileged remote attacker could exploit this vulnerability to execute...