Description
Roundcube before 1.4.13 and 1.5.x before 1.5.2 allows XSS via an HTML e-mail message with crafted Cascading Style Sheets (CSS) token sequences.
Remediation
References
Related Vulnerabilities
WordPress Plugin Gravity Forms Information Disclosure (2.4.8)
MySQL CVE-2012-0087 Vulnerability (CVE-2012-0087)
Liferay Portal Incorrect Authorization Vulnerability (CVE-2024-38002)
WordPress Plugin Video.js-HTML5 Video Player for Wordpress Cross-Site Scripting (4.5.0)
WordPress Plugin iQ Block Country Cross-Site Scripting (1.1.19)