THREATOPS
THREAT OPSCVEs › CVE-2017-16651

CVE-2017-16651 — Roundcube Webmail File Disclosure Vulnerability

CISA KEVExploited: confirmedRoundcube

Roundcube Webmail contains a file disclosure vulnerability caused by insufficient input validation in conjunction with file-based attachment plugins, which are used by default.

Vulnerability details