CVE-2026-26079

Опубликовано: 11 фев. 2026

Источник: nvd

CVSS3: 4.7

EPSS Низкий

Описание

Roundcube Webmail before 1.5.13 and 1.6 before 1.6.13 allows Cascading Style Sheets (CSS) injection, e.g., because comments are mishandled.

EPSS

Процентиль: 25%

0.00089

Низкий

4.7 Medium

CVSS3

CWE-829

CVE-2026-26079

CVSS3: 4.7

ubuntu

около 2 месяцев назад

Roundcube Webmail before 1.5.13 and 1.6 before 1.6.13 allows Cascading Style Sheets (CSS) injection, e.g., because comments are mishandled.

CVE-2026-26079

CVSS3: 4.7

redhat

около 2 месяцев назад

Roundcube Webmail before 1.5.13 and 1.6 before 1.6.13 allows Cascading Style Sheets (CSS) injection, e.g., because comments are mishandled.

CVE-2026-26079

CVSS3: 4.7

debian

около 2 месяцев назад

Roundcube Webmail before 1.5.13 and 1.6 before 1.6.13 allows Cascading ...

GHSA-pw24-qgf8-7qm8

CVSS3: 4.7

github

около 2 месяцев назад

Roundcube Webmail before 1.5.13 and 1.6 before 1.6.13 allows Cascading Style Sheets (CSS) injection, e.g., because comments are mishandled.

openSUSE-SU-2026:20323-1

suse-cvrf

23 дня назад

Security update for roundcubemail

EPSS

Процентиль: 25%

0.00089

Низкий

4.7 Medium

CVSS3

CWE-829