5 matches found
UBUNTU-CVE-2018-14954
The mail message display page in SquirrelMail through 1.4.22 has XSS via the formaction attribute...
Cybozu Mailwise vulnerable to information disclosure
Overview Cybozu Mailwise contains an information disclosure vulnerability in the mail view page. Masato Kinugawa reported this vulnerability to Cybozu, Inc., and Cybozu, Inc. reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. JPCERT/CC and Cybozu, Inc. coordinat...
JVN#02576342: Cybozu Mailwise vulnerable to information disclosure
Cybozu Mailwise contains an information disclosure vulnerability in the mail view page. Impact When a user opens a specially crafted email, an attacker can notice that the user read the email. Solution Update the Software Update to the latest version according to the information provided by the...
Cybozu Garoon fails to restrict access permissions
Overview Cybozu Garoon is a groupware. Cybozu Garoon fails to restrict access permissions in the mail function. Note that this vulnerability is different from JVN33879831. Cybozu, Inc. reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. JPCERT/CC and Cybozu, Inc...
Fedora 22 : roundcubemail-1.1.4-2.fc22 (2015-431d39fbff)
Release 1.1.4 - Add workaround for https://bugs.php.net/bug.php?id=70757 1490582 - Fix duplicate messages in list and wrong count after delete 1490572 - Fix so Installer requires PHP5 - Make brute-force attacks harder by re-generating security token on every failed login 1490549 - Slow down brute...