Roundcube · Roundcube Webmail · CVE-2015-5383
**Name of the Vulnerable Software and Affected Versions**
Roundcube Webmail versions 1.1.x through 1.1.1
**Description**
The issue allows remote attackers to obtain sensitive information by reading files in the config, temp, or logs directory.
**Recommendations**
For Roundcube Webmail versions 1.1.x through 1.1.1, update to version 1.1.2 to resolve the issue.