Description
Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail before 1.1.5 allows remote attackers to hijack the authentication of users for requests that download attachments and cause a denial of service (disk consumption) via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin yolink Search for WordPress Cross-Site Scripting (2.5)
WordPress Plugin Indexisto WordPress Site Search Cross-Site Scripting (1.0.5)
MySQL CVE-2016-0656 Vulnerability (CVE-2016-0656)
Moodle Improper Authentication Vulnerability (CVE-2018-1082)
IBM RTC Inadequate Encryption Strength Vulnerability (CVE-2020-4965)