Debian Linux Security Advisory 3541-1 - High-Tech Bridge Security Research Lab discovered that Roundcube, a webmail client, contained a path traversal vulnerability. This flaw could be exploited by an attacker to access sensitive files on the server, or even execute arbitrary code.
e23b46e4ad95b874f9e497641a751002dc3c31cf66a6ab1d5fcf9d9b56be8bf7
Roundcube version 1.1.3 suffers from a path traversal vulnerability.
6551689ab0f8ab20c15662733c86a38c232df6050526b42e48f077a5a32b41e9