CVE-2023-43770: Roundcube Webmail Persistent Cross-Site Scripting (XSS)
Roundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability. Roundcube Webmail contains a persistent cross-site scripting (XSS) vulnerability that can lead to information disclosure via malicious link references in plain/text messages.
- CISA KEV-listed (remediation due 2024-03-04)
- EPSS 80.8% (99.2% percentile)