SMTP: Roundcube Text XML Cross Site Scripting

This signature detects attempts to exploit a known cross-site scripting vulnerability against Roundcube Rcube String Replacer. It is due to insufficient validation of user-supplied input. Attackers can steal cookie-based authentication credentials and launch other attacks.

Extended Description

An issue was discovered in Roundcube Webmail before 1.3.12 and 1.4.x before 1.4.5. There is XSS via a malicious XML attachment because text/xml is among the allowed types for a preview.

Affected Products

Fedoraproject fedora

References

CVE: CVE-2020-13965

Short Name
SMTP:RCUBE-TXT-XML-XSS
Severity
Minor
Recommended
False
Recommended Action
None
Category
SMTP
Keywords
CVE-2020-13965 Cross Roundcube Scripting Site Text XML
Release Date
03/20/2025
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3792
False Positive
Unknown
Vendors

Fedoraproject

Debian

Roundcube

Found a potential security threat?