Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
RoundcubeWebmail

68 matches found

CVE
CVEadded 2017/11/09 2:29 p.m.1058 views

CVE-2017-16651

Roundcube Webmail before 1.1.10, 1.2.x before 1.2.7, and 1.3.x before 1.3.3 allows unauthorized access to arbitrary files on the host's filesystem, including configuration files, as exploited in the wild in November 2017. The attacker must be able to authenticate at the target system with a valid u...

7.8CVSS7.2AI score0.30531EPSS
CVE
CVEadded 2020/12/28 8:15 p.m.602 views

CVE-2020-35730

An XSS issue was discovered in Roundcube Webmail before 1.2.13, 1.3.x before 1.3.16, and 1.4.x before 1.4.10. The attacker can send a plain text e-mail message, with JavaScript in a link reference element that is mishandled by linkref_addindex in rcube_string_replacer.php.

6.1CVSS6.1AI score0.62448EPSS
CVE
CVEadded 2021/11/19 4:15 a.m.591 views

CVE-2021-44026

Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to a potential SQL injection via search or search_params.

9.8CVSS9.6AI score0.68575EPSS
CVE
CVEadded 2020/05/04 3:15 p.m.556 views

CVE-2020-12641

rcube_image.php in Roundcube Webmail before 1.4.4 allows attackers to execute arbitrary code via shell metacharacters in a configuration setting for im_convert_path or im_identify_path.

9.8CVSS9.5AI score0.93068EPSS
CVE
CVEadded 2017/05/23 4:29 a.m.555 views

CVE-2015-5383

Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to obtain sensitive information by reading files in the (1) config, (2) temp, or (3) logs directory.

7.5CVSS7.1AI score0.01804EPSS
CVE
CVEadded 2023/10/18 3:15 p.m.424 views

CVE-2023-5631

Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker to load arbitrary JavaScript code.

6.1CVSS5.7AI score0.90223EPSS
CVE
CVEadded 2025/06/02 5:15 a.m.355 views

CVE-2025-49113

Roundcube Webmail before 1.5.10 and 1.6.x before 1.6.11 allows remote code execution by authenticated users because the _from parameter in a URL is not validated in program/actions/settings/upload.php, leading to PHP Object Deserialization.

9.9CVSS8AI score0.84732EPSS
CVE
CVEadded 2023/09/22 6:15 a.m.191 views

CVE-2023-43770

Roundcube before 1.4.14, 1.5.x before 1.5.4, and 1.6.x before 1.6.3 allows XSS via text/plain e-mail messages with crafted links because of program/lib/Roundcube/rcube_string_replacer.php behavior.

6.1CVSS5.8AI score0.79331EPSS
CVE
CVEadded 2020/05/04 2:15 a.m.186 views

CVE-2020-12625

An issue was discovered in Roundcube Webmail before 1.4.4. There is a cross-site scripting (XSS) vulnerability in rcube_washtml.php because JavaScript code can occur in the CDATA of an HTML message.

6.1CVSS5.8AI score0.04158EPSS
CVE
CVEadded 2020/05/04 3:15 p.m.180 views

CVE-2020-12640

Roundcube Webmail before 1.4.4 allows attackers to include local files and execute code via directory traversal in a plugin name to rcube_plugin_api.php.

9.8CVSS9.1AI score0.22659EPSS
CVE
CVEadded 2020/06/09 3:15 a.m.173 views

CVE-2020-13965

An issue was discovered in Roundcube Webmail before 1.3.12 and 1.4.x before 1.4.5. There is XSS via a malicious XML attachment because text/xml is among the allowed types for a preview.

6.3CVSS7AI score0.85416EPSS
CVE
CVEadded 2020/07/06 12:15 p.m.168 views

CVE-2020-15562

An issue was discovered in Roundcube Webmail before 1.2.11, 1.3.x before 1.3.14, and 1.4.x before 1.4.7. It allows XSS via a crafted HTML e-mail message, as demonstrated by a JavaScript payload in the xmlns (aka XML namespace) attribute of a HEAD element when an SVG element exists.

6.1CVSS5.7AI score0.00861EPSS
CVE
CVEadded 2021/06/24 7:15 p.m.159 views

CVE-2020-18670

Cross Site Scripting (XSS) vulneraibility in Roundcube mail .4.4 via database host and user in /installer/test.php.

5.4CVSS5.6AI score0.00415EPSS
CVE
CVEadded 2020/08/12 1:15 p.m.156 views

CVE-2020-16145

Roundcube Webmail before 1.3.15 and 1.4.8 allows stored XSS in HTML messages during message display via a crafted SVG document. This issue has been fixed in 1.4.8 and 1.3.15.

6.1CVSS5.7AI score0.00704EPSS
CVE
CVEadded 2021/06/24 7:15 p.m.155 views

CVE-2020-18671

Cross Site Scripting (XSS) vulnerability in Roundcube Mail

5.4CVSS5.5AI score0.00386EPSS
CVE
CVEadded 2024/08/05 7:15 p.m.147 views

CVE-2024-42009

A Cross-Site Scripting vulnerability in Roundcube through 1.5.7 and 1.6.x through 1.6.7 allows a remote attacker to steal and send emails of a victim via a crafted e-mail message that abuses a Desanitization issue in message_body() in program/actions/mail/show.php.

9.3CVSS6AI score0.86797EPSS
CVE
CVEadded 2019/04/07 3:29 p.m.146 views

CVE-2019-10740

In Roundcube Webmail before 1.3.10, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the at...

4.3CVSS5.3AI score0.00079EPSS
CVE
CVEadded 2019/08/20 1:15 a.m.134 views

CVE-2019-15237

Roundcube Webmail through 1.3.9 mishandles Punycode xn-- domain names, leading to homograph attacks.

7.4CVSS7.2AI score0.00209EPSS
CVE
CVEadded 2024/06/07 4:15 a.m.134 views

CVE-2024-37383

Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via SVG animate attributes.

6.1CVSS6.1AI score0.61935EPSS
CVE
CVEadded 2024/06/07 4:15 a.m.121 views

CVE-2024-37385

Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 on Windows allows command injection via im_convert_path and im_identify_path. NOTE: this issue exists because of an incomplete fix for CVE-2020-12641.

9.8CVSS9.8AI score0.93068EPSS
CVE
CVEadded 2024/08/05 7:15 p.m.120 views

CVE-2024-42008

A Cross-Site Scripting vulnerability in rcmail_action_mail_get->run() in Roundcube through 1.5.7 and 1.6.x through 1.6.7 allows a remote attacker to steal and send emails of a victim via a malicious e-mail attachment served with a dangerous Content-Type header.

9.3CVSS6.1AI score0.04154EPSS
CVE
CVEadded 2020/05/04 2:15 a.m.102 views

CVE-2020-12626

An issue was discovered in Roundcube Webmail before 1.4.4. A CSRF attack can cause an authenticated user to be logged out because POST was not considered.

6.5CVSS6.3AI score0.0174EPSS
CVE
CVEadded 2017/04/29 7:59 p.m.93 views

CVE-2017-8114

Roundcube Webmail allows arbitrary password resets by authenticated users. This affects versions before 1.0.11, 1.1.x before 1.1.9, and 1.2.x before 1.2.5. The problem is caused by an improperly restricted exec call in the virtualmin and sasl drivers of the password plugin.

8.8CVSS8.5AI score0.0156EPSS
CVE
CVEadded 2021/11/19 4:15 a.m.92 views

CVE-2021-44025

Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to XSS in handling an attachment's filename extension when displaying a MIME type warning message.

6.1CVSS7.2AI score0.00635EPSS
CVE
CVEadded 2018/11/12 5:29 p.m.85 views

CVE-2018-19206

steps/mail/func.inc in Roundcube before 1.3.8 has XSS via crafted use of , as demonstrated by an onload attribute in a BODY element, within an HTML attachment.

6.1CVSS5.7AI score0.02862EPSS
CVE
CVEadded 2018/04/07 9:29 p.m.85 views

CVE-2018-9846

In Roundcube from versions 1.2.0 to 1.3.5, with the archive plugin enabled and configured, it's possible to exploit the unsanitized, user-controlled "_uid" parameter (in an archive.php _task=mail&_mbox=INBOX&_action=plugin.move2archive request) to perform an MX (IMAP) injection attack by placing an...

8.8CVSS8.7AI score0.00453EPSS
CVE
CVEadded 2013/11/05 6:55 p.m.83 views

CVE-2013-6172

steps/utils/save_pref.inc in Roundcube webmail before 0.8.7 and 0.9.x before 0.9.5 allows remote attackers to modify configuration settings via the _session parameter, which can be leveraged to read arbitrary files, conduct SQL injection attacks, and execute arbitrary code.

7.5CVSS7.8AI score0.01114EPSS
CVE
CVEadded 2018/05/16 7:29 p.m.83 views

CVE-2017-17688

The OpenPGP specification allows a Cipher Feedback Mode (CFB) malleability-gadget attack that can indirectly lead to plaintext exfiltration, aka EFAIL. NOTE: third parties report that this is a problem in applications that mishandle the Modification Detection Code (MDC) feature or accept an obsolet...

5.9CVSS5.7AI score0.0165EPSS
CVE
CVEadded 2023/11/06 12:15 a.m.81 views

CVE-2023-47272

Roundcube 1.5.x before 1.5.6 and 1.6.x before 1.6.5 allows XSS via a Content-Type or Content-Disposition header (used for attachment preview or download).

6.1CVSS5.7AI score0.00425EPSS
CVE
CVEadded 2008/12/17 2:30 a.m.80 views

CVE-2008-5619

html2text.php in Chuggnutt HTML to Text Converter, as used in PHPMailer before 5.2.10, RoundCube Webmail (roundcubemail) 0.2-1.alpha and 0.2-3.beta, Mahara, and AtMail Open 1.03, allows remote attackers to execute arbitrary code via crafted input that is processed by the preg_replace function with ...

10CVSS7.7AI score0.77735EPSS
CVE
CVEadded 2020/06/09 3:15 a.m.76 views

CVE-2020-13964

An issue was discovered in Roundcube Webmail before 1.3.12 and 1.4.x before 1.4.5. include/rcmail_output_html.php allows XSS via the username template object.

6.1CVSS7.1AI score0.00872EPSS
CVE
CVEadded 2016/12/08 6:59 p.m.64 views

CVE-2016-9920

steps/mail/sendmail.inc in Roundcube before 1.1.7 and 1.2.x before 1.2.3, when no SMTP server is configured and the sendmail program is enabled, does not properly restrict the use of custom envelope-from addresses on the sendmail command line, which allows remote authenticated users to execute arbi...

7.5CVSS7.5AI score0.44834EPSS
CVE
CVEadded 2017/01/30 10:59 p.m.61 views

CVE-2015-2180

The DBMail driver in the Password plugin in Roundcube before 1.1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the password.

9CVSS8.9AI score0.02743EPSS
CVE
CVEadded 2024/06/07 4:15 a.m.61 views

CVE-2024-37384

Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via list columns from user preferences.

6.1CVSS6.1AI score0.00183EPSS
CVE
CVEadded 2014/02/08 12:55 a.m.60 views

CVE-2013-1904

Absolute path traversal vulnerability in steps/mail/sendmail.inc in Roundcube Webmail before 0.7.3 and 0.8.x before 0.8.6 allows remote attackers to read arbitrary files via a full pathname in the _value parameter for the generic_message_footer setting in a save-perf action to index.php, as exploit...

5CVSS6.5AI score0.00402EPSS
CVE
CVEadded 2015/02/03 4:59 p.m.60 views

CVE-2015-1433

program/lib/Roundcube/rcube_washtml.php in Roundcube before 1.0.5 does not properly quote strings, which allows remote attackers to conduct cross-site scripting (XSS) attacks via the style attribute in an email.

4.3CVSS7.8AI score0.00557EPSS
CVE
CVEadded 2018/11/12 5:29 p.m.58 views

CVE-2018-19205

Roundcube before 1.3.7 mishandles GnuPG MDC integrity-protection warnings, which makes it easier for attackers to obtain sensitive information, a related issue to CVE-2017-17688. This is associated with plugins/enigma/lib/enigma_driver_gnupg.php.

7.5CVSS5.7AI score0.0165EPSS
CVE
CVEadded 2021/02/09 9:15 a.m.57 views

CVE-2021-26925

Roundcube before 1.4.11 allows XSS via crafted Cascading Style Sheets (CSS) token sequences during HTML email rendering.

5.4CVSS5AI score0.00259EPSS
CVE
CVEadded 2017/04/13 2:59 p.m.56 views

CVE-2015-8864

Cross-site scripting (XSS) vulnerability in Roundcube Webmail before 1.0.9 and 1.1.x before 1.1.5 allows remote attackers to inject arbitrary web script or HTML via a crafted SVG, a different vulnerability than CVE-2016-4068.

6.1CVSS5.9AI score0.00729EPSS
CVE
CVEadded 2017/04/13 2:59 p.m.56 views

CVE-2016-4068

Cross-site scripting (XSS) vulnerability in Roundcube Webmail before 1.0.9 and 1.1.x before 1.1.5 allows remote attackers to inject arbitrary web script or HTML via a crafted SVG, a different vulnerability than CVE-2015-8864.

6.1CVSS5.9AI score0.00729EPSS
CVE
CVEadded 2017/01/30 10:59 p.m.55 views

CVE-2015-2181

Multiple buffer overflows in the DBMail driver in the Password plugin in Roundcube before 1.1.0 allow remote attackers to have unspecified impact via the (1) password or (2) username.

8.8CVSS8.9AI score0.00764EPSS
CVE
CVEadded 2015/01/15 3:59 p.m.53 views

CVE-2014-9587

Multiple cross-site request forgery (CSRF) vulnerabilities in Roundcube Webmail before 1.0.4 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors, related to (1) address book operations or the (2) ACL or (3) Managesieve plugins.

6.8CVSS9AI score0.03585EPSS
CVE
CVEadded 2011/11/03 3:55 p.m.50 views

CVE-2011-4078

include/iniset.php in Roundcube Webmail 0.5.4 and earlier, when PHP 5.3.7 or 5.3.8 is used, allows remote attackers to trigger a GET request for an arbitrary URL, and cause a denial of service (resource consumption and inbox outage), via a Subject header containing only a URL, a related issue to CV...

5CVSS6.8AI score0.01085EPSS
CVE
CVEadded 2012/08/25 10:29 a.m.50 views

CVE-2012-3507

Cross-site scripting (XSS) vulnerability in program/steps/mail/func.inc in RoundCube Webmail before 0.8.0, when using the Larry skin, allows remote attackers to inject arbitrary web script or HTML via the email message subject.

2.6CVSS5.5AI score0.00407EPSS
CVE
CVEadded 2016/01/29 7:59 p.m.50 views

CVE-2015-8793

Cross-site scripting (XSS) vulnerability in program/include/rcmail.php in Roundcube before 1.0.6 and 1.1.x before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the _mbox parameter in a mail task to the default URL, a different vulnerability than CVE-2011-2937.

6.1CVSS5.9AI score0.00665EPSS
CVE
CVEadded 2012/08/25 10:29 a.m.49 views

CVE-2012-3508

Cross-site scripting (XSS) vulnerability in program/lib/washtml.php in Roundcube Webmail 0.8.0 allows remote attackers to inject arbitrary web script or HTML by using "javascript:" in an href attribute in the body of an HTML-formatted email.

4.3CVSS5.5AI score0.09998EPSS
CVE
CVEadded 2009/02/03 11:30 p.m.47 views

CVE-2009-0413

Cross-site scripting (XSS) vulnerability in RoundCube Webmail (roundcubemail) 0.2 stable allows remote attackers to inject arbitrary web script or HTML via the background attribute embedded in an HTML e-mail message.

4.3CVSS5.5AI score0.00407EPSS
CVE
CVEadded 2016/08/25 6:59 p.m.46 views

CVE-2016-4069

Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail before 1.1.5 allows remote attackers to hijack the authentication of users for requests that download attachments and cause a denial of service (disk consumption) via unspecified vectors.

8.8CVSS8.5AI score0.01131EPSS
CVE
CVEadded 2017/05/23 4:29 a.m.45 views

CVE-2015-5381

Cross-site scripting (XSS) vulnerability in program/include/rcmail.php in Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the _mbox parameter to the default URI.

6.1CVSS6.1AI score0.02372EPSS
CVE
CVEadded 2017/03/12 5:59 a.m.45 views

CVE-2017-6820

rcube_utils.php in Roundcube before 1.1.8 and 1.2.x before 1.2.4 is susceptible to a cross-site scripting vulnerability via a crafted Cascading Style Sheets (CSS) token sequence within an SVG element.

6.1CVSS5.7AI score0.00556EPSS
Total number of security vulnerabilities68