RoundCube Webmail Multiple HTML-injection Vulnerabilities

Bugtraq ID: 61976
Class: Input Validation Error
CVE: CVE-2013-5645
Remote: Yes
Local: No
Published: Aug 23 2013 12:00AM
Updated: May 07 2015 05:07PM
Credit: und3r
Vulnerable: S.u.S.E. openSUSE 12.3
S.u.S.E. openSUSE 12.2
Roundcube Webmail 0.8.6
Roundcube Webmail 0.8.5
Roundcube Webmail 0.7.3
Roundcube Webmail 0.7.2
Roundcube Webmail 0.9.2
Roundcube Webmail 0.8.4
Roundcube Webmail 0.6
Mandriva Business Server 1 X86 64
Mandriva Business Server 1
MandrakeSoft Enterprise Server 5 x86_64
MandrakeSoft Enterprise Server 5
Not Vulnerable: Roundcube Webmail 0.9.3


 

Privacy Statement
Copyright 2010, SecurityFocus