Description
Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail before 1.1.5 allows remote attackers to hijack the authentication of users for requests that download attachments and cause a denial of service (disk consumption) via unspecified vectors.
Remediation
References
Related Vulnerabilities
Microsoft SQL Server Other Vulnerability (CVE-2000-0202)
Jboss EAP Improper Authentication Vulnerability (CVE-2012-0874)
WordPress Plugin Lightbox Jquery Possible Remote Code Execution (0.24)
WordPress Plugin Limit Attempts by BestWebSoft Cross-Site Scripting (1.1.7)
MediaWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-41799)