Hackers target vulnerabilities in Roundcube Webmail

CISA has added the flaws, one of which is considered critical, to its Known Exploited Vulnerabilities catalog.
Cyber Daily

You’ve got mail: Pair of RoundCube Webmail vulnerabilities added to KEV Catalog

CVE-2025-68461 was only disclosed last December, and impacts versions of Roundcube Webmail before 1.5.12 and 1.6 before 1.6.12. This is a cross-site-scripting vulnerability with a CVSS score of 7.2, ...
SecurityWeek

Recent RoundCube Webmail Vulnerability Exploited in Attacks

The US cybersecurity agency CISA on Friday warned of two RoundCube Webmail vulnerabilities being exploited in the wild. Prevalent within government and enterprise networks, RoundCube Webmail is a ...

Roundcube Webmail: Attacks on security vulnerabilities ongoing

The IT security authority CISA warns of currently observed attacks on Roundcube webmail vulnerabilities. Admins should update ...
Yahoo

How to install Roundcube webmail on OS X Server

In a previous article, I covered the steps on how to setup and configure the Mail service in OS X Server. While this included the steps to get up and running with email services, it did not address ...
Threat Post

Critical Vulnerability Patched in Roundcube Webmail

Open source webmail provider Roundcube was patched against a vulnerability that could be trivially exploited to run code on servers or access email accounts. Open source webmail provider Roundcube has ...
SiliconANGLE

A new and dangerous malware infects Roundcube webmail

A malware group has been busy creating a dangerous new vulnerability in the Roundcube webmail service, which is popular in European government circles. What makes this issue so important is that is a ...
TechRepublic

New Cyberattack From Winter Vivern Exploits a Zero-Day Vulnerability in Roundcube Webmail

New Cyberattack From Winter Vivern Exploits a Zero-Day Vulnerability in Roundcube Webmail Your email has been sent After reading the technical details about this zero-day that targeted governmental ...
Houston Chronicle

How to Set Up Roundcube on a Website

Roundcube is an open-source application for managing email through a Web interface. It runs on Web servers that support the PHP server-side scripting language. Roundcube may be a good choice for your ...
WeLiveSecurity

Roundcube Webmail servers under attack – Week in security with Tony Anscombe

This week, ESET research described how the Winter Vivern APT group has been exploiting a zero-day XSS vulnerability in Roundcube Webmail servers to target European governmental entities and a think ...
VentureBeat

Massive open source email & collaboration platform Roundcube beats Indiegogo funding goal

Hundreds of millions of people use digital collaboration tools daily. But just three major vertical silos — owned by Google, Microsoft, and Apple — own the majority of the business, collectively ...