CVE-2012-3508 in Webmail
Resumen (Inglés)
Cross-site scripting (XSS) vulnerability in program/lib/washtml.php in Roundcube Webmail 0.8.0 allows remote attackers to inject arbitrary web script or HTML by using "javascript:" in an href attribute in the body of an HTML-formatted email.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
Reservar
2012-06-14
Divulgación
2012-08-25
Estado
Confirmado
Voces
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerabilidad | CWE | Exp | Con | CVE |
|---|---|---|---|---|---|
| 61797 | Roundcube Webmail washtml.php secuencias de comandos en sitios cruzados | 79 | Prueba de concepto | Arreglo oficial | CVE-2012-3508 |
Descripción
CPE
CWE
CVSS
Hazañas
Historia
Diferencia
Relacionar
Inteligencia de amenazas
API JSON
API XML
API CSV