CVE-2020-18670
N/A
N/A
Summary
Cross Site Scripting (XSS) vulneraibility in Roundcube mail .4.4 via database host and user in /installer/test.php.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/roundcube/roundcubemail/issues/7406
- https://roundcube.net/news/2020/06/02/security-updates-1.4.5-and-1.3.12
- https://lorexxar.cn/2020/06/10/roundcube-mail-xss/#Store-Xss-in-installer-test-php
References
- https://github.com/roundcube/roundcubemail/issues/7406
- https://roundcube.net/news/2020/06/02/security-updates-1.4.5-and-1.3.12
- https://lorexxar.cn/2020/06/10/roundcube-mail-xss/#Store-Xss-in-installer-test-php
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.