Package(s):	roundcubemail	CVE #(s):	CVE-2009-0413
Created:	February 5, 2009	Updated:	February 11, 2009
Description:	roundcubemail has a cross-site scripting vulnerability. From the CVE entry: Cross-site scripting (XSS) vulnerability in RoundCube Webmail (roundcubemail) 0.2 stable allows remote attackers to inject arbitrary web script or HTML via the background attribute embedded in an HTML e-mail message.
Alerts:	Fedora FEDORA-2009-1204 roundcubemail 2009-02-05 Fedora FEDORA-2009-1256 roundcubemail 2009-02-05

---

to post comments