Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2024-37384

Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via list columns from user preferences.

No technical information available.

No CWE or OWASP classifications available.

Software From Fixed in
roundcube / webmail - 1.5.7
roundcube / webmail 1.6.0 1.6.7
debian / debian_linux 10.0 10.0.x