Exposures › CVE-2023-5631
CVE-2023-5631
Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2023-10-26
Reference
⌖ exploited in the wild
shame 50/100
exploited-in-wild
Roundcube Webmail contains a persistent cross-site scripting (XSS) vulnerability that allows a remote attacker to run malicious JavaScript code.
Players implicated
Description
Roundcube Webmail contains a persistent cross-site scripting (XSS) vulnerability that allows a remote attacker to run malicious JavaScript code.
Affected FedRAMP products 0 in the catalog
No correlated FedRAMP products.