Roundcube Webmail Vulnerabilities

Fix Roundcube Webmail on Windows Server

7 entries · Windows Server · Sorted by severity

Showing 1–7 of 7 results

	Severity	Title	CVE ID	CVSS	Exploit	Reboot	Script
Active exploitation	CRITICALCISA KEV	RoundCube Webmail Deserialization of Untrusted Data Vulnerability (CVE-2025-49113)Roundcube Webmail	CVE-2025-49113	9.9	In the wild	Reboot Required	Script
Active exploitation	CRITICALCISA KEV	RoundCube Webmail Cross-Site Scripting Vulnerability (CVE-2024-42009)Roundcube Webmail	CVE-2024-42009	9.3	In the wild	Reboot Required	Script
Active exploitation	HIGHCISA KEV	RoundCube Webmail Cross-site Scripting Vulnerability (CVE-2025-68461)Roundcube Webmail	CVE-2025-68461	7.2	In the wild	Reboot Required	Script
Active exploitation	MEDIUMCISA KEV	Roundcube Webmail Cross-Site Scripting (XSS) Vulnerability (CVE-2020-13965)Roundcube Webmail	CVE-2020-13965	6.1	In the wild	Reboot Required	Script
Active exploitation	MEDIUMCISA KEV	Roundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability (CVE-2023-43770)Roundcube Webmail	CVE-2023-43770	6.1	In the wild	Reboot Required	Script
Active exploitation	MEDIUMCISA KEV	Roundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability (CVE-2023-5631)Roundcube Webmail	CVE-2023-5631	6.1	In the wild	Reboot Required	Script
Active exploitation	MEDIUMCISA KEV	RoundCube Webmail Cross-Site Scripting (XSS) Vulnerability (CVE-2024-37383)Roundcube Webmail	CVE-2024-37383	6.1	In the wild	Reboot Required	Script