CVE-2025-68461 PoC — Roundcube Webmail 跨站脚本漏洞

Source

https://github.com/gotr00t0day/CVE-2025-68461

Associated Vulnerability

Title:Roundcube Webmail 跨站脚本漏洞 (CVE-2025-68461)
Description:Roundcube Webmail是Roundcube开源的一款基于浏览器的开源IMAP客户端，它支持地址薄管理、信息搜索、拼写检查等。 Roundcube Webmail 1.5.12之前版本和1.6.12之前的1.6版本存在跨站脚本漏洞，该漏洞源于SVG文档中的animate标签可能导致跨站脚本攻击。

Description

A C++ security scanner tool to detect Cross-Site Scripting (XSS) vulnerabilities in Roundcube Webmail installations.

File Snapshot


 None

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!