VulnerableCode Package Details - pkg:deb/debian/roundcube@0.1.1-9?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/roundcube@0.1.1-9?distro=trixie

purl	pkg:deb/debian/roundcube@0.1.1-9?distro=trixie

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-n13m-y4ks-euep	Improper Control of Generation of Code ('Code Injection') html2text.php in Chuggnutt HTML to Text Converter, as used in PHPMailer before 5.2.10, RoundCube Webmail (roundcubemail) 0.2-1.alpha and 0.2-3.beta, Mahara, and AtMail Open 1.03, allows remote attackers to execute arbitrary code via crafted input that is processed by the preg_replace function with the eval switch.	CVE-2008-5619 GHSA-v5c9-mmw9-829q

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T11:12:17.578054+00:00	Debian Importer	Fixing	VCID-n13m-y4ks-euep	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T07:37:02.902552+00:00	Debian Importer	Fixing	VCID-n13m-y4ks-euep	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:52:06.093383+00:00	Debian Importer	Fixing	VCID-n13m-y4ks-euep	https://security-tracker.debian.org/tracker/data/json	38.1.0