Roundcube Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2020-12626 - Vulnerability Database

Roundcube Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2020-12626

Medium

Reference: CVE-2020-12626

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-12626

Title: Roundcube Cross-Site Request Forgery (CSRF) Vulnerability

Overview:

An issue was discovered in Roundcube Webmail before 1.4.4. A CSRF attack can cause an authenticated user to be logged out because POST was not considered.