Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
include/iniset.php in Roundcube Webmail 0.5.4 and earlier, when PHP 5.3.7 or 5.3.8 is used, allows remote attackers to trigger a GET request for an arbitrary URL, and cause a denial of service (resource consumption and inbox outage), via a Subject header containing only a URL, a related issue to CVE-2011-3379.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
RoundCube Webmail 拒绝服务漏洞
Vulnerability Description
RoundCube Webmail是一款基于浏览器的IMAP客户端(邮件客户端),它支持地址薄管理、信息搜索、拼写检查等。 RoundCube Webmail中存在拒绝服务漏洞。由于应用程序没有正确处理某些主题中包含URI链接的电子邮件,攻击者可利用该漏洞使受害用户失去访问他们邮件INBOX的能力,并导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A