CVE-2012-3508
published 2012-08-25CVE-2012-3508: Cross-site scripting (XSS) vulnerability in program/lib/washtml.php in Roundcube Webmail 0.8.0 allows remote attackers to inject arbitrary web script or HTML…
PriorityP423medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
4.20%
89.7th percentile
Cross-site scripting (XSS) vulnerability in program/lib/washtml.php in Roundcube Webmail 0.8.0 allows remote attackers to inject arbitrary web script or HTML by using "javascript:" in an href attribute in the body of an HTML-formatted email.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | roundcube | < roundcube 0.7.2-4 (bookworm) | roundcube 0.7.2-4 (bookworm) |
| roundcube | webmail | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv4.3MEDIUM
vendor_debian4.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-h9g8-25j6-gxp7: Cross-site scripting (XSS) vulnerability in program/lib/washtml
ghsa_unreviewed·2022-05-17
CVE-2012-3508 [MEDIUM] CWE-79 GHSA-h9g8-25j6-gxp7: Cross-site scripting (XSS) vulnerability in program/lib/washtml
Cross-site scripting (XSS) vulnerability in program/lib/washtml.php in Roundcube Webmail 0.8.0 allows remote attackers to inject arbitrary web script or HTML by using "javascript:" in an href attribute in the body of an HTML-formatted email.
OSV
CVE-2012-3508: Cross-site scripting (XSS) vulnerability in program/lib/washtml
osv·2012-08-25·CVSS 4.3
CVE-2012-3508 [MEDIUM] CVE-2012-3508: Cross-site scripting (XSS) vulnerability in program/lib/washtml
Cross-site scripting (XSS) vulnerability in program/lib/washtml.php in Roundcube Webmail 0.8.0 allows remote attackers to inject arbitrary web script or HTML by using "javascript:" in an href attribute in the body of an HTML-formatted email.
Debian
CVE-2012-3508: roundcube - Cross-site scripting (XSS) vulnerability in program/lib/washtml.php in Roundcube...
vendor_debian·2012·CVSS 4.3
CVE-2012-3508 [MEDIUM] CVE-2012-3508: roundcube - Cross-site scripting (XSS) vulnerability in program/lib/washtml.php in Roundcube...
Cross-site scripting (XSS) vulnerability in program/lib/washtml.php in Roundcube Webmail 0.8.0 allows remote attackers to inject arbitrary web script or HTML by using "javascript:" in an href attribute in the body of an HTML-formatted email.
Scope: local
bookworm: resolved (fixed in 0.7.2-4)
bullseye: resolved (fixed in 0.7.2-4)
forky: resolved (fixed in 0.7.2-4)
sid: resolved (fixed in 0.7.2-4)
trixie: resolved (fixed in 0.7.2-4)
No detection rules found.
Bugzilla
CVE-2012-3508 roundcubemail: XSS by processing signatures in HTML mode
bugzilla·2012-08-20·CVSS 4.3
CVE-2012-3508 [MEDIUM] CVE-2012-3508 roundcubemail: XSS by processing signatures in HTML mode
CVE-2012-3508 roundcubemail: XSS by processing signatures in HTML mode
A cross-site scripting (XSS) flaw was found in the way RoundCube Webmail, a browser-based multilingual IMAP client, performed sanitization of signatures content in the HTML email. A remote attacker could send an email message with specially-crafted signature value that, when processed in roundcubemail would lead to arbitrary HTML or web script execution.
Upstream ticket:
[1] http://trac.roundcube.net/ticket/1488613
Relevant patch:
[2] https://github.com/roundcube/roundcubemail/commit/c086978f6a91eacb339fd2976202fca9dad2ef32
References:
[3] http://trac.roundcube.net/wiki/Changelog
[4] http://www.openwall.com/lists/oss-security/2012/08/20/2
Note: The "Larry skin Subject header XSS flaw:
http://trac.roundcube.net/tick
Bugzilla
CVE-2012-3508 roundcubemail: XSS by processing signatures in HTML mode [fedora-all]
bugzilla·2012-08-20·CVSS 4.3
CVE-2012-3508 [MEDIUM] CVE-2012-3508 roundcubemail: XSS by processing signatures in HTML mode [fedora-all]
CVE-2012-3508 roundcubemail: XSS by processing signatures in HTML mode [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=
http://secunia.com/advisories/50279http://sourceforge.net/news/?group_id=139281&id=309011http://trac.roundcube.net/ticket/1488613http://www.openwall.com/lists/oss-security/2012/08/20/2http://www.openwall.com/lists/oss-security/2012/08/20/9http://www.securelist.com/en/advisories/50279https://github.com/roundcube/roundcubemail/commit/5ef8e4ad9d3ee8689d2b83750aa65395b7cd59eehttp://secunia.com/advisories/50279http://sourceforge.net/news/?group_id=139281&id=309011http://trac.roundcube.net/ticket/1488613http://www.openwall.com/lists/oss-security/2012/08/20/2http://www.openwall.com/lists/oss-security/2012/08/20/9http://www.securelist.com/en/advisories/50279https://github.com/roundcube/roundcubemail/commit/5ef8e4ad9d3ee8689d2b83750aa65395b7cd59ee
2012-08-25
Published