Roundcube ≫ Roundcube

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

7.5

CVE-2024-42010

EPSS 15.27%
Published 05.08.2024 19:15:38
Last modified 12.08.2024 14:15:07

mod_css_styles in Roundcube through 1.5.7 and 1.6.x through 1.6.7 insufficiently filters Cascading Style Sheets (CSS) token sequences in rendered e-mail messages, allowing a remote attacker to obtain sensitive information.

6.1

CVE-2021-46144

EPSS 1.29%
Published 06.01.2022 05:15:09
Last modified 21.11.2024 06:33:40

Roundcube before 1.4.13 and 1.5.x before 1.5.2 allows XSS via an HTML e-mail message with crafted Cascading Style Sheets (CSS) token sequences.