2 matches found
Roundcube rcfilters plugin 2.1.6 - Cross-Site Scripting Vulnerability
Exploit for linux platform in category web applications Exploit Title: Roundcube rcfilters plugin 2.1.6 - Cross-Site Scripting Exploit Author: Fahimeh Rezaei Vendor Homepage: https://plugins.roundcube.net/packages/eagle00789/rcfilters Software Link:...
CVE-2018-16736
CVE-2018-16736 affects the Roundcube rcfilters plugin (v2.1.6). The vulnerability is a Cross-Site Scripting (XSS) flaw exposed via the _whatfilter and _messages parameters in the Filters settings. Documented impact is cross-site scripting, with NVD listing CVSS v2 base score 3.5 (LOW) and CVSS v3...