FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Roundcube -- Cross-site scripting vulnerabilities

Affected packages
roundcube < 1.6.7,1

Details

VuXML ID e020b0fd-1751-11ef-a490-84a93843eb75
Discovery 2024-05-19
Entry 2024-05-21

The Roundcube project reports:

cross-site scripting (XSS) vulnerability in handling SVG animate attributes.

cross-site scripting (XSS) vulnerability in handling list columns from user preferences.

[source]

References

URL https://roundcube.net/news/2024/05/19/security-updates-1.6.7-and-1.5.7

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.