Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2024-05-21 Roundcube -- Cross-site scripting vulnerabilities
2024-01-23 TinyMCE -- mXSS in multiple plugins
2023-10-18 Roundcube -- XSS vulnerability in SVG
2023-09-16 Roundcube -- XSS vulnerability
2021-12-31 Roundcube -- XSS vulnerability
2021-11-15 Roundcube -- Multiple vulnerabilities
2018-04-13 roundcube -- IMAP command injection vulnerability
2017-11-11 roundcube -- file disclosure vulnerability
2017-06-09 roundcube -- arbitrary password resets
2016-11-29 Roundcube -- arbitrary command execution
2016-06-10 roundcube -- XSS vulnerability
2015-07-07 roundcube -- multiple vulnerabilities
2013-04-19 roundcube -- arbitrary file disclosure vulnerability
2012-08-27 roundcube -- cross-site scripting in HTML email messages
2011-09-13 roundcube -- XSS vulnerability
2009-03-16 roundcube -- webmail script insertion and php code injection
2008-12-30 roundcube -- remote execution of arbitrary code