Cross-site scripting (XSS) vulnerability in Roundcube Webmail prior to 0.7, when Internet Explorer is used, allows remote malicious users to inject arbitrary web script or HTML via vectors involving an embedded image attachment.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
roundcube webmail |
||
roundcube webmail 0.5.4 |
||
roundcube webmail 0.5.3 |
||
roundcube webmail 0.1.1 |
||
roundcube webmail 0.1 |
||
roundcube webmail 0.5.1 |
||
roundcube webmail 0.4.2 |
||
roundcube webmail 0.2.2 |
||
roundcube webmail 0.2 |
||
roundcube webmail 0.5 |
||
roundcube webmail 0.4.1 |
||
roundcube webmail 0.4 |
||
roundcube webmail 0.3.1 |
||
roundcube webmail 0.3 |
||
roundcube webmail 0.5.2 |
||
roundcube webmail 0.2.1 |