exploit the possibilities

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 2 of 2

CVE-2024-37383

Status Candidate

Overview

Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via SVG animate attributes.

Related Files

Ubuntu Security Notice USN-6848-1: Posted Jun 26, 2024; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 6848-1 - Matthieu Faou and Denys Klymenko discovered that Roundcube incorrectly handled certain SVG images. A remote attacker could possibly use this issue to load arbitrary JavaScript code. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS and Ubuntu 23.10. Rene Rehme discovered that Roundcube incorrectly handled certain headers. A remote attacker could possibly use this issue to load arbitrary JavaScript code. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS and Ubuntu 23.10.; tags | advisory, remote, arbitrary, javascript; systems | linux, ubuntu; advisories | CVE-2023-47272, CVE-2023-5631, CVE-2024-37383, CVE-2024-37384; SHA-256 | 6806c53c3241b7542421db1f1d4222c2a53699435aca3668ff2429b7404c20a5; Download | Favorite | View

Debian Security Advisory 5714-1: Posted Jun 19, 2024; Authored by Debian | Site debian.org; CrowdStrike discovered that roundcube, a skinnable AJAX based webmail solution for IMAP servers, did not correctly process and sanitize requests. This would allow an attacker to perform Cross-Side Scripting (XSS) attacks.; tags | advisory, imap; systems | linux, debian; advisories | CVE-2024-37383, CVE-2024-37384; SHA-256 | 76f384d98ec58b42d0845da5a6f6ff864308dde40b2b6c466e6e929407bc0f85; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 247 files
Ubuntu 91 files
Gentoo 31 files
Debian 17 files
indoushka 12 files
tmrswrr 8 files
Sina Kheirkhah 7 files
Rodolfo Tavares 4 files
nu11secur1ty 3 files
bRpsd 3 files

File Tags

File Archives

Systems

AIX (429)
Apple (2,090)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,082)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,531)
HPUX (880)
iOS (376)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,465)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,354)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,678)
UNIX (9,430)
UnixWare (187)
Windows (6,667)
Other

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec