Description
Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to a potential SQL injection via search or search_params.
Remediation
References
Related Vulnerabilities
MySQL Other Vulnerability (CVE-2006-4031)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6102)
PHP CVE-2004-0542 Vulnerability (CVE-2004-0542)
WordPress Ultimate Member Plugin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-8520)
MediaWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2022-34750)