exploit the possibilities

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 2 of 2

CVE-2024-37384

Status Candidate

Overview

Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via list columns from user preferences.

Related Files

Ubuntu Security Notice USN-6848-1: Posted Jun 26, 2024; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 6848-1 - Matthieu Faou and Denys Klymenko discovered that Roundcube incorrectly handled certain SVG images. A remote attacker could possibly use this issue to load arbitrary JavaScript code. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS and Ubuntu 23.10. Rene Rehme discovered that Roundcube incorrectly handled certain headers. A remote attacker could possibly use this issue to load arbitrary JavaScript code. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS and Ubuntu 23.10.; tags | advisory, remote, arbitrary, javascript; systems | linux, ubuntu; advisories | CVE-2023-47272, CVE-2023-5631, CVE-2024-37383, CVE-2024-37384; SHA-256 | 6806c53c3241b7542421db1f1d4222c2a53699435aca3668ff2429b7404c20a5; Download | Favorite | View

Debian Security Advisory 5714-1: Posted Jun 19, 2024; Authored by Debian | Site debian.org; CrowdStrike discovered that roundcube, a skinnable AJAX based webmail solution for IMAP servers, did not correctly process and sanitize requests. This would allow an attacker to perform Cross-Side Scripting (XSS) attacks.; tags | advisory, imap; systems | linux, debian; advisories | CVE-2024-37383, CVE-2024-37384; SHA-256 | 76f384d98ec58b42d0845da5a6f6ff864308dde40b2b6c466e6e929407bc0f85; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 234 files
Ubuntu 78 files
Debian 22 files
Gentoo 15 files
tmrswrr 6 files
Jann Horn 4 files
Google Security Research 4 files
Amit Roy 4 files
Furkan Eren Tetik 3 files
ron190 3 files

File Tags

File Archives

Systems

AIX (429)
Apple (2,089)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,073)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,515)
HPUX (880)
iOS (376)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,207)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,190)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,613)
UNIX (9,424)
UnixWare (187)
Windows (6,665)
Other

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec