RoundCube 1.6.4 (security)

E

Erulezz

Verified User
Joined
Sep 14, 2015
Messages
698
Location
🇳🇱

Security update 1.6.4 released​

Published: 16 October 2023
We just published a security update to the version 1.6 of Roundcube Webmail. It provides a fix to a recently reported XSS vulnerability:

  • Fix cross-site scripting (XSS) vulnerability in handling of SVG in HTML messages (#9168) reported separately by Matthieu Faou (ESET) and Denys Klymenko.
See the full changelog in the release notes in the release notes on the Github download page.

We strongly recommend to update all productive installations of Roundcube 1.6.x with this new version.
 
You must log in or register to reply here.
Back
Top