Xudongzheng

**Name of the Vulnerable Software and Affected Versions** Roundcube Webmail versions prior to 1.4.4 **Description** The issue is related to a CSRF attack that can cause an authenticated user to be logged out. This is because POST was not considered, leading to insufficient protection against cross-site request forgery. The exploitation of this issue may allow a remote attacker to cause a denial of service. **Recommendations** For versions prior to 1.4.4, update to version 1.4.4 or later to resolve the issue. As a temporary workaround, consider implementing additional CSRF protection measures to minimize the risk of exploitation.