Description Cross Site Scripting (XSS) vulneraibility in Roundcube mail .4.4 via database host and user in /installer/test.php. Remediation References CVE-2020-18670 Related Vulnerabilities Moodle Credentials Management Errors Vulnerability (CVE-2011-4587) Joomla Other Vulnerability (CVE-2006-7008) Collabtive Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-6872) XWiki Improper Handling of Exceptional Conditions Vulnerability (CVE-2023-29520) WordPress Plugin Htaccess by BestWebSoft Cross-Site Request Forgery (1.8.1) Severity Medium Classification CVE-2020-18670 CWE-707 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities