VulnerableCode Package Details - pkg:deb/debian/roundcube@1.1.1%2Bdfsg.1-2?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-489e-j7sj-5kgv	The DBMail driver in the Password plugin in Roundcube before 1.1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the password.	CVE-2015-2180
VCID-9uqr-ph81-gfef	Multiple buffer overflows in the DBMail driver in the Password plugin in Roundcube before 1.1.0 allow remote attackers to have unspecified impact via the (1) password or (2) username.	CVE-2015-2181
VCID-yv5x-shsw-57cv	Multiple cross-site request forgery (CSRF) vulnerabilities in Roundcube Webmail before 1.0.4 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors, related to (1) address book operations or the (2) ACL or (3) Managesieve plugins.	CVE-2014-9587

Vulnerability

Summary

Aliases

VCID-489e-j7sj-5kgv

The DBMail driver in the Password plugin in Roundcube before 1.1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the password.

CVE-2015-2180

VCID-9uqr-ph81-gfef

Multiple buffer overflows in the DBMail driver in the Password plugin in Roundcube before 1.1.0 allow remote attackers to have unspecified impact via the (1) password or (2) username.

CVE-2015-2181

VCID-yv5x-shsw-57cv

Multiple cross-site request forgery (CSRF) vulnerabilities in Roundcube Webmail before 1.0.4 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors, related to (1) address book operations or the (2) ACL or (3) Managesieve plugins.

CVE-2014-9587

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T13:20:57.009155+00:00	Debian Importer	Fixing	VCID-yv5x-shsw-57cv	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:55:20.299008+00:00	Debian Importer	Fixing	VCID-489e-j7sj-5kgv	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:19:49.390480+00:00	Debian Importer	Fixing	VCID-9uqr-ph81-gfef	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T09:12:05.174656+00:00	Debian Importer	Fixing	VCID-yv5x-shsw-57cv	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:52:23.107722+00:00	Debian Importer	Fixing	VCID-489e-j7sj-5kgv	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:42:39.553544+00:00	Debian Importer	Fixing	VCID-9uqr-ph81-gfef	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:52:07.104004+00:00	Debian Importer	Fixing	VCID-9uqr-ph81-gfef	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:52:07.061417+00:00	Debian Importer	Fixing	VCID-489e-j7sj-5kgv	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:52:06.961764+00:00	Debian Importer	Fixing	VCID-yv5x-shsw-57cv	https://security-tracker.debian.org/tracker/data/json	38.1.0