THREAT OPS › CVEs › CVE-2025-68461
CVE-2025-68461 — RoundCube Webmail Cross-site Scripting Vulnerability
RoundCube Webmail contains a cross-site scripting vulnerability via the animate tag in an SVG document.
Vulnerability details
- Affected productsWebmail
- KEV remediation due2026-03-13