Information on source package roundcube

Available versions

ReleaseVersion
squeeze0.3.1-6
wheezy, sid0.7.2-1

Open issues

Open unimportant issues

BugDescription
CVE-2011-1491The login form in Roundcube Webmail before 0.5.1 does not properly ...
CVE-2011-1492steps/utils/modcss.inc in Roundcube Webmail before 0.5.1 does not ...
CVE-2011-2937Cross-site scripting (XSS) vulnerability in the UI messages ...

Resolved issues

BugDescription
CVE-2005-4368roundcube webmail Alpha, with a default high verbose level ...
CVE-2007-6321Cross-site scripting (XSS) vulnerability in RoundCube webmail 0.1rc2, ...
CVE-2008-5619html2text.php in Chuggnutt HTML to Text Converter, as used in ...
CVE-2008-5620RoundCube Webmail (roundcubemail) before 0.2-beta allows remote ...
CVE-2009-0413Cross-site scripting (XSS) vulnerability in RoundCube Webmail ...
CVE-2009-4076Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail ...
CVE-2009-4077Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail ...
CVE-2010-0464Roundcube 0.3.1 and earlier does not request that the web browser ...
CVE-2011-4078include/iniset.php in Roundcube Webmail 0.5.4 and earlier, when PHP ...

Security announcements

Search for package or bug name: Reporting problems

Home - Testing Security Team - Debian Security - Source (SVN)