Exposures › CVE-2025-68461
CVE-2025-68461
Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2026-02-20
Reference
⌖ exploited in the wild
shame 50/100
exploited-in-wild
RoundCube Webmail contains a cross-site scripting vulnerability via the animate tag in an SVG document.
Players implicated
Description
RoundCube Webmail contains a cross-site scripting vulnerability via the animate tag in an SVG document.
Affected FedRAMP products 0 in the catalog
No correlated FedRAMP products.