CVE-2023-5631

CVE-2023-5631

Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker

to load arbitrary JavaScript code.

Source: CVE-2023-5631

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다