Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
roundcube webmail 0.2 vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2011-1491
The login form in Roundcube Webmail prior to 0.5.1 does not properly handle a correctly authenticated but unintended login attempt, which makes it easier for remote authenticated users to obtain sensitive information by arranging for a victim to login to the attacker's accou...
Roundcube Webmail 0.1
Roundcube Webmail 0.4
Roundcube Webmail 0.3
Roundcube Webmail 0.5
Roundcube Webmail 0.2
Roundcube Webmail 0.4.2
Roundcube Webmail
Roundcube Webmail 0.1.1
Roundcube Webmail 0.4.1
Roundcube Webmail 0.3.1
Roundcube Webmail 0.2.1
5
CVSSv2
CVE-2010-0464
Roundcube 0.3.1 and previous versions does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote malicious users to determine the network location of the webmail user by logging DNS requests.
Roundcube Webmail 0.1
Roundcube Webmail 0.3
Roundcube Webmail 0.2
Roundcube Webmail
Roundcube Webmail 0.2.2
Roundcube Webmail 0.1.1
Roundcube Webmail 0.2.1
6.8
CVSSv2
CVE-2009-4076
Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail 0.2.2 and previous versions allows remote malicious users to hijack the authentication of unspecified users for requests that modify user information via unspecified vectors, a different vulnerability than CVE-2...
Roundcube Webmail
Roundcube Webmail 0.1
Roundcube Webmail 0.2
Roundcube Webmail 0.1.1
Roundcube Webmail 0.2.1
6.8
CVSSv2
CVE-2009-4077
Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail 0.2.2 and previous versions allows remote malicious users to hijack the authentication of unspecified users for requests that send arbitrary emails via unspecified vectors, a different vulnerability than CVE-200...
Roundcube Webmail
Roundcube Webmail 0.1
Roundcube Webmail 0.2
Roundcube Webmail 0.1.1
Roundcube Webmail 0.2.1
4.3
CVSSv2
CVE-2009-0413
Cross-site scripting (XSS) vulnerability in RoundCube Webmail (roundcubemail) 0.2 stable allows remote malicious users to inject arbitrary web script or HTML via the background attribute embedded in an HTML e-mail message.
Roundcube Webmail 0.2
7.8
CVSSv2
CVE-2008-5620
RoundCube Webmail (roundcubemail) prior to 0.2-beta allows remote malicious users to cause a denial of service (memory consumption) via crafted size parameters that are used to create a large quota image.
Roundcube Webmail 0.1
Roundcube Webmail 0.1.1
Roundcube Webmail 0.2
Roundcube Webmail
10
CVSSv2
CVE-2008-5619
html2text.php in Chuggnutt HTML to Text Converter, as used in PHPMailer prior to 5.2.10, RoundCube Webmail (roundcubemail) 0.2-1.alpha and 0.2-3.beta, Mahara, and AtMail Open 1.03, allows remote malicious users to execute arbitrary code via crafted input that is processed by the ...
Roundcube Webmail 0.2.1
Roundcube Webmail 0.2.3
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2