Lucene search
+L

25 matches found

Mageia
Mageia
added 2016/04/29 5:21 p.m.47 views

Updated roundcubemail packages fix security vulnerabilities

Updated roundcubemail packages fix security vulnerabilities: More security issues in the DBMail driver for the password plugin, related to CVE-2015-2181. XSS issue in SVG images handling CVE-2015-8864. Lack of protection for attachment download URLs against CSRF CVE-2016-4069. The roundcubemail...

8.8CVSS7.6AI score0.02713EPSS
Exploits0References4
OSV
OSV
added 2016/04/29 5:21 p.m.14 views

MGASA-2016-0155 Updated roundcubemail packages fix security vulnerabilities

Updated roundcubemail packages fix security vulnerabilities: More security issues in the DBMail driver for the password plugin, related to CVE-2015-2181. XSS issue in SVG images handling CVE-2015-8864. Lack of protection for attachment download URLs against CSRF CVE-2016-4069. The roundcubemail...

8.8CVSS7.7AI score0.02713EPSS
Exploits0References5
Mageia
Mageia
added 2015/10/14 8:28 p.m.55 views

Updated roundcubemail package fixes security vulnerabilities

Multiple security issues in the DBMail driver for the password plugin, including buffer overflows CVE-2015-2181 and the ability for a remote attacker to execute arbitrary shell commands as root CVE-2015-2180. An authenticated user can download arbitrary files from the web server that the web serv...

9CVSS8.5AI score0.04714EPSS
Exploits2References6
OSV
OSV
added 2015/10/14 8:28 p.m.10 views

MGASA-2015-0400 Updated roundcubemail package fixes security vulnerabilities

Multiple security issues in the DBMail driver for the password plugin, including buffer overflows CVE-2015-2181 and the ability for a remote attacker to execute arbitrary shell commands as root CVE-2015-2180. An authenticated user can download arbitrary files from the web server that the web serv...

9CVSS8.1AI score0.04714EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2015/06/29 12:0 a.m.19 views

openSUSE Security Update : roundcubemail (openSUSE-2015-454)

roundcubemail was updated to version 1.0.6 to fix many minor bugs and two security issues. The security-related fixes in particular are : - security improvement in DBMail driver of password plugin - security improvement in contact photo handling %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

5.4AI score
Exploits0
Rows per page
Query Builder