Oval Definition:oval:org.opensuse.security:def:20135645
Revision Date:2022-06-30Version:1
Title:CVE-2013-5645
Description:

Multiple cross-site scripting (XSS) vulnerabilities in Roundcube webmail before 0.9.3 allow user-assisted remote attackers to inject arbitrary web script or HTML via the body of a message visited in (1) new or (2) draft mode, related to compose.inc; and (3) might allow remote authenticated users to inject arbitrary web script or HTML via an HTML signature, related to save_identity.inc.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2013-5645
Mitre CVE-2013-5645
SUSE CVE-2013-5645
openSUSE-SU-2013:1420-1
Platform(s):openSUSE 12.2 Update
openSUSE 12.3 Update
openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • roundcubemail-0.9.3-1.8.1 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND roundcubemail-1.2.3-1.1 is installed
    • BACK