all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Roundcube Webmail XSS Vulnerability Exposes Sensitive Data

Add to bookmarks
Sept. 25, 2023, 2:32 p.m. | Guru

Cyber Security News cybersecuritynews.com

RoundCube Webmail is a browser-based, multilingual IMAP client. Its extensive feature set includes MIME support, address books, folder manipulation, message searching, spell checking, and more. A cross-site scripting (XSS) vulnerability tracked as CVE-2023-43770 in Roundcube has been found, which might result in information leakage through malicious link references in plain/text communications. Roundcube Webmail 1.6.3 is […]


The post Roundcube Webmail XSS Vulnerability Exposes Sensitive Data appeared first on Cyber Security News.

address books browser client communications cross-site cve cyber security data feature folder found imap information information leakage link malicious malicious link manipulation message mime result roundcube roundcube webmail scripting sensitive sensitive data support text vulnerabilities vulnerability webmail xss

Visit resource

More from cybersecuritynews.com / Cyber Security News

Hackers Infiltrated 9-days Within UnitedHealth Network Before Ransomware Attack 10 hours ago | cybersecuritynews.com
alphv attack blackcat breach +21
Malware Cuckoo – Previously Unknown Infosteler Spyware Steals Data From MacOS 11 hours ago | cybersecuritynews.com
april bird code cuckoo +16
Postman API Testing Platform Flaw Exposes Sensitive Credentials 13 hours ago | cybersecuritynews.com
api api testing credentials cyber security +19
Millions of Docker Hub Repositories Found Pushing Malware for Over 5 Years 14 hours ago | cybersecuritynews.com
access applications cyber security developers +19
Investigating Two TeamCity Authentication Bypass Vulnerabilities 1 day, 3 hours ago | cybersecuritynews.com
access account account takeovers array +29
Threat Actors Claiming of 0-Day Vulnerability in Zyxel VPN Device 1 day, 5 hours ago | cybersecuritynews.com
0-day vulnerability access attackers claim +18
Muddling Meerkat Using DNS As A Powerful Weapon For Sophistication 1 day, 6 hours ago | cybersecuritynews.com
actor attacks china chinese +32
Pathfinder – New Attack Steals Sensitive Data From Modern Processors 1 day, 6 hours ago | cybersecuritynews.com
analysts attack attacks building +25
Beware of New Android Trojan That Executes Malicious Commands on Your Phone 1 day, 7 hours ago | cybersecuritynews.com
android android malware android trojan backdoor +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

EY- GDS- Cybersecurity- Staff

@ EY | Miguel Hidalgo, MX, 11520
View on infosec-jobs.com

Staff Security Operations Engineer

@ Workiva | Ames
View on infosec-jobs.com

Public Relations Senior Account Executive (B2B Tech/Cybersecurity/Enterprise)

@ Highwire Public Relations | Los Angeles, CA
View on infosec-jobs.com

Airbus Canada - Responsable Cyber sécurité produit / Product Cyber Security Responsible

@ Airbus | Mirabel
View on infosec-jobs.com

Investigations (OSINT) Manager

@ Logically | India
View on infosec-jobs.com

Security Engineer I, Offensive Security Penetration Testing

@ Amazon.com | US, NY, Virtual Location - New York
View on infosec-jobs.com
View more jobs