CVE-2012-4668
25.08.2012, 10:29
Cross-site scripting (XSS) vulnerability in Roundcube Webmail 0.8.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the signature in an email.
| Vendor | Product | Version |
|---|---|---|
| roundcube | webmail | 𝑥 ≤ 0.8.1 |
| roundcube | webmail | 0.1 |
| roundcube | webmail | 0.1:alpha |
| roundcube | webmail | 0.1:beta |
| roundcube | webmail | 0.1:beta2 |
| roundcube | webmail | 0.1:rc1 |
| roundcube | webmail | 0.1:rc2 |
| roundcube | webmail | 0.1.1 |
| roundcube | webmail | 0.2 |
| roundcube | webmail | 0.2:alpha |
| roundcube | webmail | 0.2:beta |
| roundcube | webmail | 0.2.1 |
| roundcube | webmail | 0.2.2 |
| roundcube | webmail | 0.3 |
| roundcube | webmail | 0.3:beta |
| roundcube | webmail | 0.3:rc1 |
| roundcube | webmail | 0.3.1 |
| roundcube | webmail | 0.4 |
| roundcube | webmail | 0.4:beta |
| roundcube | webmail | 0.4.1 |
| roundcube | webmail | 0.4.2 |
| roundcube | webmail | 0.5 |
| roundcube | webmail | 0.5:beta |
| roundcube | webmail | 0.5:rc |
| roundcube | webmail | 0.5.1 |
| roundcube | webmail | 0.5.2 |
| roundcube | webmail | 0.5.3 |
| roundcube | webmail | 0.5.4 |
| roundcube | webmail | 0.6 |
| roundcube | webmail | 0.7 |
| roundcube | webmail | 0.7.1 |
| roundcube | webmail | 0.7.2 |
| roundcube | webmail | 0.7.3 |
| roundcube | webmail | 0.8.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
References