Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2019/09/03 12:0 a.m.17 views

Roundcube Webmail < 1.0.6, 1.1.x < 1.1.2 XSS Vulnerability

Roundcube Webmail is prone to a cross-site scripting XSS vulnerability. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

6.1CVSS6.1AI score0.01388EPSS
Exploits1References3
OSV
OSV
added 2016/01/29 7:59 p.m.7 views

CVE-2015-8793

Cross-site scripting XSS vulnerability in program/include/rcmail.php in Roundcube before 1.0.6 and 1.1.x before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the mbox parameter in a mail task to the default URL, a different vulnerability than CVE-2011-2937...

6.1CVSS6AI score0.01388EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2016/01/29 7:59 p.m.24 views

CVE-2015-8793

Cross-site scripting XSS vulnerability in program/include/rcmail.php in Roundcube before 1.0.6 and 1.1.x before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the mbox parameter in a mail task to the default URL, a different vulnerability than CVE-2011-2937...

6.1CVSS6.5AI score0.01388EPSS
Exploits1References4
CVE
CVE
added 2016/01/29 7:0 p.m.62 views

CVE-2015-8793

The CVE refers to a Cross-site scripting (XSS) vulnerability in Roundcube Webmail affecting the file program/include/rcmail.php, specifically in versions before 1.0.6 and 1.1.x before 1.1.2. The underlying issue is an XSS vector via the _mbox parameter in a mail task to the default URL, enabling ...

6.1CVSS5.9AI score0.01388EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder