Description Cross Site Scripting (XSS) vulneraibility in Roundcube mail .4.4 via database host and user in /installer/test.php. Remediation References CVE-2020-18670 Related Vulnerabilities WordPress Plugin Calendar_plugin Cross-Site Scripting (1.0) WordPress Plugin Post Snippets Security Bypass (3.0.5) MySQL CVE-2021-2193 Vulnerability (CVE-2021-2193) WordPress Plugin Zoho CRM Lead Magnet Cross-Site Scripting (1.7.2.8) WordPress Plugin Gallery Blocks with Lightbox. Image Gallery, (HTML5 video , YouTube, Vimeo) Video Gallery and Lightbox for native gallery Cross-Site Scripting (2.2.0) Severity Medium Classification CVE-2020-18670 CWE-707 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities