Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2024-57004

Опубликовано: 03 фев. 2025
Источник: nvd
CVSS3: 6.1
EPSS Низкий

Описание

Cross-Site Scripting (XSS) vulnerability in Roundcube Webmail 1.6.9 allows remote authenticated users to upload a malicious file as an email attachment, leading to the triggering of the XSS by visiting the SENT session.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:roundcube:webmail:1.6.9:*:*:*:*:*:*:*

EPSS

Процентиль: 36%
0.00151
Низкий

6.1 Medium

CVSS3

Дефекты

CWE-80

Связанные уязвимости

ubuntu логотип

CVE-2024-57004

CVSS3: 6.1
ubuntu
около 1 года назад

Cross-Site Scripting (XSS) vulnerability in Roundcube Webmail 1.6.9 allows remote authenticated users to upload a malicious file as an email attachment, leading to the triggering of the XSS by visiting the SENT session.

debian логотип

CVE-2024-57004

CVSS3: 6.1
debian
около 1 года назад

Cross-Site Scripting (XSS) vulnerability in Roundcube Webmail 1.6.9 al ...

github логотип

GHSA-36j9-fp7f-7f7m

CVSS3: 6.1
github
около 1 года назад

Cross-Site Scripting (XSS) vulnerability in Roundcube Webmail 1.6.9 allows remote authenticated users to upload a malicious file as an email attachment, leading to the triggering of the XSS by visiting the SENT session.

EPSS

Процентиль: 36%
0.00151
Низкий

6.1 Medium

CVSS3

Дефекты

CWE-80