Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-57004

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-Site Scripting XSS vulnerability in Roundcube Webmail 1.6.9 allows remote authenticated users to upload a malicious file as an email attachment, leading t...

6.1CVSS5.8AI score0.2882EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2025/02/04 12:0 a.m.14 views

Roundcube Webmail <= 1.6.9 XSS Vulnerability - Windows

Roundcube Webmail is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.1CVSS5AI score0.2882EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2025/02/03 7:15 p.m.6 views

CVE-2024-57004

Cross-Site Scripting XSS vulnerability in Roundcube Webmail 1.6.9 allows remote authenticated users to upload a malicious file as an email attachment, leading to the triggering of the XSS by visiting the SENT session...

6.1CVSS5.9AI score0.2882EPSS
Exploits1References3
Circl
Circl
added 2025/02/03 6:47 p.m.9 views

CVE-2024-57004

creationtimestamp| type| source ---|---|--- 2025-02-03 18:47:42+00:00| seen| https://infosec.exchange/users/cve/statuses/113941444193551327 2025-02-03 19:16:17+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhcawyo7rz2t...

6.1CVSS6.3AI score0.2882EPSS
Exploits1References2
CVE
CVE
added 2025/02/03 12:0 a.m.97 views

CVE-2024-57004

CVE-2024-57004 affects Roundcube Webmail 1.6.9. An XSS exists where remote authenticated users can upload a malicious file as an email attachment, with the XSS triggered when visiting the SENT session. The description specifies the vulnerable component is the attachment upload path and the conseq...

6.1CVSS4.9AI score0.2882EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2025/02/03 12:0 a.m.6 views

CVE-2024-57004

Cross-Site Scripting XSS vulnerability in Roundcube Webmail 1.6.9 allows remote authenticated users to upload a malicious file as an email attachment, leading to the triggering of the XSS by visiting the SENT session...

6.1CVSS5.3AI score0.2882EPSS
Exploits1
OSV
OSV
added 2025/02/03 12:0 a.m.10 views

CVE-2024-57004

Cross-Site Scripting XSS vulnerability in Roundcube Webmail 1.6.9 allows remote authenticated users to upload a malicious file as an email attachment, leading to the triggering of the XSS by visiting the SENT session...

6.1CVSS4.8AI score0.2882EPSS
Exploits1References4
Rows per page
Query Builder