4 matches found
SUSE CVE-2026-48845
In Roundcube Webmail 1.6.x between 1.6.14 and 1.6.16 and 1.7.x before 1.7.1, remote image blocking was not honored for URLs pointing to local/private destinations, which may lead to information disclosure or privilege escalation via a text/html email message...
CVE-2026-25916
Roundcube Webmail before 1.5.13 and 1.6 before 1.6.13, when "Block remote images" is used, does not block SVG feImage...
CVE-2026-25916
Roundcube Webmail before 1.5.13 and 1.6 before 1.6.13, when "Block remote images" is used, does not block SVG feImage...
PT-2025-34520 · Undefined · Undefined
Apple released another CVE: CVE-2025-43280 •Impact: Processing web content may lead to arbitrary code execution •Description: The issue was resolved by not loading remote images ios applesecurity ios18 bugbountytip apple bugbounty applebugbounty...