FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2026-02-11 07:54:38 UTC

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
0d6094a2-4095-11f0-8c92-00d861a0e66d	Post-Auth Remote Code Execution found in Roundcube Webmail Roundcube Webmail reports: Fix Post-Auth RCE via PHP Object Deserialization reported by firs0v Discovery 2025-06-01 Entry 2025-06-03 roundcube-php81 < 1.6.11 roundcube-php82 < 1.6.11 roundcube-php83 < 1.6.11 roundcube-php84 < 1.6.11 CVE-2025-49113 https://roundcube.net/news/2025/06/01/security-updates-1.6.11-and-1.5.10
f301a241-04d3-11f1-a38c-8447094a420f	Roundcube -- Multiple vulnerabilities The Roundcube project reports: Unspecified CSS injection vulnerability. Remote image blocking bypass via SVG content. Discovery 2026-02-08 Entry 2026-02-08 roundcube-php82 roundcube-php83 roundcube-php84 roundcube-php85 < 1.6.13,1 https://github.com/roundcube/roundcubemail/releases/tag/1.6.13

VuXML ID

Description

0d6094a2-4095-11f0-8c92-00d861a0e66d

Post-Auth Remote Code Execution found in Roundcube Webmail

Roundcube Webmail reports:

Fix Post-Auth RCE via PHP Object Deserialization reported by firs0v

Discovery 2025-06-01
Entry 2025-06-03
roundcube-php81

< 1.6.11

roundcube-php82

< 1.6.11

roundcube-php83

< 1.6.11

< 1.6.11

CVE-2025-49113
https://roundcube.net/news/2025/06/01/security-updates-1.6.11-and-1.5.10

Roundcube -- Multiple vulnerabilities

The Roundcube project reports:

Unspecified CSS injection vulnerability.

Remote image blocking bypass via SVG content.

Discovery 2026-02-08
Entry 2026-02-08
roundcube-php82
roundcube-php83
roundcube-php84
roundcube-php85

< 1.6.13,1

https://github.com/roundcube/roundcubemail/releases/tag/1.6.13