Akhilreni

#20693of 53,630
12.2Total CVSS
Vulnerabilities · 2
Medium
2
PT-2017-7495
6.1
2016-04-22
Roundcube · Roundcube Webmail · CVE-2015-8864
**Name of the Vulnerable Software and Affected Versions** Roundcube Webmail versions prior to 1.0.9 Roundcube Webmail versions 1.1.x prior to 1.1.5 **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via a crafted SVG. **Recommendations** For versions prior to 1.0.9, update to version 1.0.9 or later. For versions 1.1.x prior to 1.1.5, update to version 1.1.5 or later.
PT-2017-8454
6.1
2016-04-22
Roundcube · Roundcube Webmail · CVE-2016-4068
**Name of the Vulnerable Software and Affected Versions** Roundcube Webmail versions prior to 1.0.9 Roundcube Webmail versions 1.1.x prior to 1.1.5 **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via a crafted SVG. **Recommendations** For versions prior to 1.0.9, update to version 1.0.9 or later. For versions 1.1.x prior to 1.1.5, update to version 1.1.5 or later.