CVE-2021-44026 - Roundcube Webmail SQL Injection Vulnerability
Roundcube | Roundcube Webmail
- Date Added:
- 2023-06-22
- Due Date:
- 2023-07-13
- Vulnerability Name
Roundcube Webmail SQL Injection Vulnerability
- Description
Roundcube Webmail is vulnerable to SQL injection via search or search_params.
- Known To Be Used in Ransomware Campaigns?
Unknown
- Action
Apply updates per vendor instructions.
- Additional Notes
- https://roundcube.net/news/2021/11/12/security-updates-1.4.12-and-1.3.17-released; https://nvd.nist.gov/vuln/detail/CVE-2021-44026
- Related News Articles
Free online web security scanner