HTTP: Roundcube Webmail Inline Attachment View Stored Cross-Site Scripting
This signature detects attempts to exploit a known cross-site scripting vulnerability against Roundcube. It is due to insufficient validation of user-supplied input. Attackers can steal cookie-based authentication credentials and launch other attacks.
Extended Description
A Cross-Site Scripting vulnerability in rcmail_action_mail_get->run() in Roundcube through 1.5.7 and 1.6.x through 1.6.7 allows a remote attacker to steal and send emails of a victim via a malicious e-mail attachment served with a dangerous Content-Type header.
Affected Products
Roundcube webmail
Short Name
HTTP:XSS:ROUNDCB-WEBML-STORED
Severity
Major
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Attachment CVE-2024-42008 Cross-Site Inline Roundcube Scripting Stored View Webmail
Release Date
12/03/2024
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
False Positive
Unknown
Vendors
Roundcube