Description

Multiple buffer overflows in the DBMail driver in the Password plugin in Roundcube before 1.1.0 allow remote attackers to have unspecified impact via the (1) password or (2) username.

Remediation

References

CVE-2015-2181

Related Vulnerabilities

WordPress 4.8.x Cross-Site Request Forgery (4.8 - 4.8.8)

MySQL CVE-2016-5442 Vulnerability (CVE-2016-5442)

WordPress 4.0.x Multiple Vulnerabilities (4.0 - 4.0.33)

WordPress CVE-2020-28033 Vulnerability (CVE-2020-28033)

WordPress Plugin Plotly Cross-Site Scripting (1.0.2)

Severity

High

Classification

CVE-2015-2181 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities