Over 84,000 Roundcube instances vulnerable to actively exploited flaw

June 9, 2025

Over 84,000 Roundcube instances vulnerable to actively exploited flaw

Over 84,000 Roundcube webmail installations are vulnerable to CVE-2025-49113, a critical remote code execution (RCE) flaw with a public exploit.
The flaw, which impacts Roundcube versions 1.1.0 throug …

Published Date:
Jun 09, 2025 (1 hour, 30 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-49113

Source: Read More

Previous ArticleCVE-2025-47651 – Infility Global SQL Injection

Highlights

CVE-2025-30009 – SAP SRM Live Auction Cockpit Java Applet Remote Code Execution Vulnerability

May 13, 2025

CVE ID : CVE-2025-30009

Published : May 13, 2025, 1:15 a.m. | 1 hour, 49 minutes ago

Description : he Live Auction Cockpit in SAP Supplier Relationship Management (SRM) uses a deprecated java applet component within the affected SRM packages which allows an unauthenticated attacker to execute malicious script in the victim�s browser. This vulnerability has low impact on confidentiality and integrity within the scope of that victim�s browser, with no effect on availability of the application

Severity: 6.1 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

CodeSOD: A Real POS Report

Decoding The SVG path Element: Line Commands

Apple doesn’t need better AI as much as AI needs Apple to bring its A-game

DistroWatch Weekly, Issue 1125

Motion Highlights #9

The 2025 Wholesome Direct was chock-full of cozy casual games and aesthetic vibes

GuacPanel

GuacPanel

FilamentExamples.com: Our Demo-Projects and Tutorials on Filament

Laravel Migration With Schema Validation in MongoDB

Raspberry Pi 5 Desktop Mini PC: Installing Software

Raspberry Pi 5 Desktop Mini PC: Installing Software

SmartOS – Type 1 Hypervisor platform based on illumos

Karakeep is a self-hostable bookmark-everything app

Over 84,000 Roundcube instances vulnerable to actively exploited flaw

Over 84,000 Roundcube instances vulnerable to actively exploited flaw

CVE-2025-47651 – Infility Global SQL Injection

CVE-2025-48122 – Holest Engineering Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light SQL Injection Vulnerability

How do you find time for cleanup work

IEEE/CVF Conference on Computer Vision and Pattern Recognition (CVPR) 2025

CVE-2025-48471 – FreeScout Apache Remote Code Execution Vulnerability

CVE-2025-28026 – TOTOLINK Router Buffer Overflow Vulnerability

CVE-2025-30009 – SAP SRM Live Auction Cockpit Java Applet Remote Code Execution Vulnerability

I may have found the ultimate monitor for conferencing and productivity, but it has a few weaknesses

CVE-2025-27038 – Google Chrome Adreno GPU Driver Buffer Overflow

CVE-2025-32445 Privilege Escalation Flaw in Argo Events

Over 84,000 Roundcube instances vulnerable to actively exploited flaw

Over 84,000 Roundcube instances vulnerable to actively exploited flaw

Related Posts