Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/roundcube@1.2.1%2Bdfsg.1-1?distro=trixie
purl pkg:deb/debian/roundcube@1.2.1%2Bdfsg.1-1?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-rthq-fqk2-yydk Cross-site scripting (XSS) vulnerability in Roundcube Webmail before 1.0.9 and 1.1.x before 1.1.5 allows remote attackers to inject arbitrary web script or HTML via a crafted SVG, a different vulnerability than CVE-2015-8864. CVE-2016-4068

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T09:00:19.378566+00:00 Debian Importer Fixing VCID-rthq-fqk2-yydk https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-11T18:02:17.836240+00:00 Debian Importer Fixing VCID-rthq-fqk2-yydk https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:52:07.502645+00:00 Debian Importer Fixing VCID-rthq-fqk2-yydk https://security-tracker.debian.org/tracker/data/json 38.1.0