CVE-2020-35730

An XSS issue was discovered in Roundcube Webmail before 1.2.13, 1.3.x before 1.3.16, and 1.4.x before 1.4.10. The attacker can send a plain text e-mail message, with JavaScript in a link reference element that is mishandled by linkrefaddindex in rcubestring_replacer.php.

References

Affected packages

Git / github.com/roundcube/roundcubemail

Affected ranges

Type

GIT

Repo

https://github.com/roundcube/roundcubemail

Events

Introduced

Fixed

9b69cce641a8c34c7efcb34628287d4fadf7bbaf

Introduced

854aa7f35f6ed963033e2c0c4735852af7eca21b

Fixed

54bf3d0d1acba03db785d16bb53564e417c3883e

Introduced

fdbdaec9989998b2a378619273f9fb60e6ad6879

Fixed

4efec49a46a3f4aab58f606d06b669b6498a0811

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "1.2.13"
        },
        {
            "introduced": "1.3.0"
        },
        {
            "fixed": "1.3.16"
        },
        {
            "introduced": "1.4"
        },
        {
            "fixed": "1.4.10"
        }
    ]
}

Affected versions

1.*

1.3.0

1.3.1

1.3.10

1.3.11

1.3.12

1.3.13

1.3.14

1.3.15

1.3.2

1.3.3

1.3.4

1.3.5

1.3.6

1.3.7

1.3.8

1.3.9

1.4.0

1.4.1

1.4.2

1.4.3

1.4.4

1.4.5

1.4.6

1.4.7

1.4.8

1.4.9

Database specific

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "32"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "33"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "9.0"
            }
        ]
    }
]

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-35730.json"