CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Roundcube: >> Webmail >> 0.1.1 Security Vulnerabilities

CVE-2009-4076

Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail 0.2.2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that modify user information via unspecified vectors, a different vulnerability than CVE-2009-4077.

CVSS Score

6.8

EPSS Score

0.002

Published

2009-11-25

CVE-2009-4077

Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail 0.2.2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that send arbitrary emails via unspecified vectors, a different vulnerability than CVE-2009-4076.

CVSS Score

6.8

EPSS Score

0.002

Published

2009-11-25

CVE-2008-5620

RoundCube Webmail (roundcubemail) before 0.2-beta allows remote attackers to cause a denial of service (memory consumption) via crafted size parameters that are used to create a large quota image.

CVSS Score

7.8

EPSS Score

0.006

Published

2008-12-17

Prev

Page 6

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved