10 matches found
Exploit for Cross-site Scripting in Roundcube Webmail
CVE-2024-42008 RoundCube XSS Exploit Overview This reposi...
openSUSE Security Advisory (openSUSE-SU-2024:0328-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 15 Security Update : roundcubemail (openSUSE-SU-2024:0328-1)
The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0328-1 advisory. Update to 1.6.8 This is a security update to the stable version 1.6 of Roundcube Webmail. It provides fixes to recently reported security...
Mageia: Security Advisory (MGASA-2024-0279)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 5743-2] roundcube security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5743-2 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 13, 2024 https://www.debian.org/security/faq -...
Debian dsa-5743 : roundcube - security update
The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5743 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5743-1 [email protected] https://www.debian.org/securit...
Roundcube Webmail Flaws Allow Hackers to Steal Emails and Passwords
Cybersecurity researchers have disclosed details of security flaws in the Roundcube webmail software that could be exploited to execute malicious JavaScript in a victim's web browser and steal sensitive information from their account under specific circumstances. "When a victim views a malicious...
CVE-2024-42008
creationtimestamp| type| source ---|---|--- 2024-08-05 22:16:36+00:00| seen| https://t.me/cvedetector/2484 2024-08-07 15:40:04+00:00| published-proof-of-concept| https://t.me/truesecator/6067 2025-01-20 10:07:01+00:00| seen| MISP/699ea9e1-1ba0-400a-aa98-76a5615d9323 2025-02-13 22:00:06+00:00|...
Roundcube Webmail < 1.5.8, 1.6.x < 1.6.8 Multiple Vulnerabilities - Linux
Roundcube Webmail is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:roundcube:webmail";...
CVE-2024-42008
A Cross-Site Scripting vulnerability in rcmailactionmailget-run in Roundcube through 1.5.7 and 1.6.x through 1.6.7 allows a remote attacker to steal and send emails of a victim via a malicious e-mail attachment served with a dangerous Content-Type header...