CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

CNVD•added 2017/05/25 12:0 a.m.•3 views

Roundcube Webmail Cross-Site Scripting Vulnerability (CNVD-2017-08082)

RoundCube Webmail is a browser-based IMAP client mail client that supports address book management, message searching, spell checking and more. A cross-site scripting vulnerability exists in the program/include/rcmail.php file in version 1.1.x prior to Roundcube Webmail 1.1.2. A remote attacker c...

6.1CVSS6.1AI score0.01182EPSS

Exploits0References1

OSV•added 2017/05/23 4:29 a.m.•1 views

DEBIAN-CVE-2015-5381

Cross-site scripting XSS vulnerability in program/include/rcmail.php in Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the mbox parameter to the default URI...

6.1CVSS6AI score0.01182EPSS

Exploits0References1

OSV•added 2017/05/23 4:29 a.m.•0 views

UBUNTU-CVE-2015-5381

6.1CVSS7AI score0.01182EPSS

Exploits0References4

OSV•added 2016/01/29 7:59 p.m.•1 views

DEBIAN-CVE-2015-8793

Cross-site scripting XSS vulnerability in program/include/rcmail.php in Roundcube before 1.0.6 and 1.1.x before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the mbox parameter in a mail task to the default URL, a different vulnerability than CVE-2011-2937...

6.1CVSS6AI score0.00276EPSS

Exploits1References1

OSV•added 2016/01/29 7:59 p.m.•0 views

UBUNTU-CVE-2015-8793

6.1CVSS6.5AI score0.00276EPSS

Exploits1References5

OSV•added 2011/09/21 4:55 p.m.•1 views

DEBIAN-CVE-2011-2937

Cross-site scripting XSS vulnerability in the UI messages functionality in Roundcube Webmail before 0.5.4 allows remote attackers to inject arbitrary web script or HTML via the mbox parameter to the default URI...

4.3CVSS5.8AI score0.00548EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by