Description
Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail 0.2.2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that send arbitrary emails via unspecified vectors, a different vulnerability than CVE-2009-4076.
Remediation
References
Related Vulnerabilities
Apache HTTP Server Other Vulnerability (CVE-2004-1387)
MediaWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-41799)
PrestaShop Files or Directories Accessible to External Parties Vulnerability (CVE-2020-5250)
Oracle Database Server CVE-2007-0274 Vulnerability (CVE-2007-0274)
WordPress Plugin SendPress Newsletters Unspecified Vulnerability (1.7.6.11)