2021-11-19 03:47:48
mitre
PUBLISHED
Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to XSS in handling an attachments filename extension when displaying a MIME type warning message.