exploitDog

GHSA-qqrg-hpxx-mmvw

Опубликовано: 18 дек. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

Roundcube Webmail before 1.5.12 and 1.6 before 1.6.12 is prone to a Cross-Site-Scripting (XSS) vulnerability via the animate tag in an SVG document.

Roundcube Webmail before 1.5.12 and 1.6 before 1.6.12 is prone to a Cross-Site-Scripting (XSS) vulnerability via the animate tag in an SVG document.

Ссылки

EPSS

Процентиль: 2%

0.00013

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-68461

CVSS3: 7.2

ubuntu

около 2 месяцев назад

Roundcube Webmail before 1.5.12 and 1.6 before 1.6.12 is prone to a Cross-Site-Scripting (XSS) vulnerability via the animate tag in an SVG document.

CVE-2025-68461

CVSS3: 7.2

nvd

около 2 месяцев назад

Roundcube Webmail before 1.5.12 and 1.6 before 1.6.12 is prone to a Cross-Site-Scripting (XSS) vulnerability via the animate tag in an SVG document.

CVE-2025-68461

CVSS3: 7.2

debian

около 2 месяцев назад

Roundcube Webmail before 1.5.12 and 1.6 before 1.6.12 is prone to a Cr ...

EPSS

Процентиль: 2%

0.00013

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-79