Description

steps/utils/modcss.inc in Roundcube Webmail before 0.5.1 does not properly verify that a request is an expected request for an external Cascading Style Sheets (CSS) stylesheet, which allows remote authenticated users to trigger arbitrary outbound TCP connections from the server, and possibly obtain sensitive information, via a crafted request.

Remediation

References

CVE-2011-1492

Related Vulnerabilities

TCExam Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-5744)

WordPress Plugin Twitter Feed:Embedded Timeline 'url' Parameter Cross-Site Scripting (0.3.1)

Oracle Database Server CVE-2011-0870 Vulnerability (CVE-2011-0870)

WordPress Plugin Matrix Gallery 'upload.php' Arbitrary File Upload (2.1)

WordPress MU 'wp-includes/wpmu-functions.php' Cross-Site Scripting Vulnerability (1.0 - 2.6)

Severity

Medium

Classification

CVE-2011-1492 CWE-20

Tags

Missing Update Known Vulnerabilities