Roundcube Webmail
Moderate fix3 remedies
cpe:2.3:a:roundcube:roundcube_webmail:*:*:*:*:*:*:*, +1 more
Moderate fix3 remedies
- < 1.5.14
- < 1.6.14
Roundcube Webmail IMAP Injection and CSRF Bypass Vulnerability
Vulnerability
Patched
A vulnerability allowing IMAP injection and Cross-Site Request Forgery (CSRF) bypass has been identified in Roundcube Webmail versions prior to 1.5.14 and 1.6.14. The issue arises from unsanitized arguments in the IMAP SEARCH command, which could be exploited during mail searches.
Impact
Exploitation of this vulnerability could lead to IMAP injection, allowing attackers to manipulate IMAP commands and potentially access or modify email data. Additionally, the CSRF bypass could be used to exploit users' sessions and perform actions on their behalf.
Reproduction
The vulnerability can be reproduced by sending an IMAP SEARCH command with unsanitized arguments, such as newlines, which could inject additional commands. This can be done through the mail search feature in Roundcube Webmail.
Remediation
Users are advised to update to Roundcube Webmail versions 1.5.14, 1.6.14, or 1.7-rc6.
Added: Apr 3, 2026, 5:27 AM
Updated: Apr 3, 2026, 5:27 AM
Vulnerability Rating
Custom Algorithm
spread
6.4impact
1.3exploitability
6.4remediation
7.7relevance
5.1threat
4.8urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.