Roundcube Webmail vulnerable to XSS via list columns from user preferences
CVE-2024-37384
6.1MEDIUM
What is CVE-2024-37384?
Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via list columns from user preferences.
Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via list columns from user preferences.