Description
Cross-site scripting (XSS) vulnerability in Roundcube Webmail before 1.0.9 and 1.1.x before 1.1.5 allows remote attackers to inject arbitrary web script or HTML via a crafted SVG, a different vulnerability than CVE-2016-4068.
Remediation
References
Related Vulnerabilities
Ruby CVE-2021-41819 Vulnerability (CVE-2021-41819)
WordPress Plugin STT2 Extension Add Terms Unspecified Vulnerability (1.0.2)
WordPress Plugin Store Locator for WordPress with Google Maps-LotsOfLocales SQL Injection (3.33.1)
Ruby on Rails Improper Input Validation Vulnerability (CVE-2011-2929)
WordPress Plugin WP Google Maps Cross-Site Scripting (8.1.11)