Security Advisory

CVE-2025-68461

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-18 05:00:54
Last updated 2026-02-26 16:07:30
Assigner mitre
State PUBLISHED

Description

Roundcube Webmail before 1.5.12 and 1.6 before 1.6.12 is prone to a Cross-Site-Scripting (XSS) vulnerability via the animate tag in an SVG document.

← Browse all CVEs View on cve.org ↗