Roundcube - Free webmail for the masses. Roundcube webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client including MIME support address book folder manipulation message searching and spell checking.
Roundcube Improper Neutralization of Argument Delimiters in a Command (Argument Injection) Vulnerability
Critical
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Critical
Roundcube Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Critical
Roundcube Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Critical
Roundcube Improper Privilege Management Vulnerability
High
Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
High
Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
High
Roundcube Multiple Buffer Overflow Vulnerabilities
High
Roundcube Improper Access Control Vulnerability
High
Roundcube Files or Directories Accessible to External Parties Vulnerability
High
Roundcube Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
Roundcube Resource Management Errors Vulnerability
High
Roundcube Unspesificed Vulnerability
High
Roundcube Unspesificed Vulnerability
High
Roundcube Cross-site Request Forgery (CSRF) Vulnerability
High
Roundcube Unspesificed Vulnerability
High
Roundcube Cross-Site Request Forgery (CSRF) Vulnerability
Medium
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
Roundcube Multiple Cross-site Request Forgery (CSRF) Vulnerabilities
Medium
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium