Bugzilla – Bug 1171039
VUL-0: CVE-2020-12626: roundcubemail: CSRF attack may lead to logging out an authenticated user
Last modified: 2020-08-13 15:39:23 UTC
An issue was discovered in Roundcube Webmail before 1.4.4. A CSRF attack can
cause an authenticated user to be logged out because POST was not considered.
server:php:applications -> roundcubemail updated to 1.4.8
openSUSE:Factory package submitted.