|
|
 |
Sonicwall Signatures
Go to All Categories list.
| | Roundcube Webmail PHP Object Deserialization 2 |
Category: WEB-ATTACKS
| Roundcube Webmail before 1.5.10 and 1.6.x before 1.6.11 allows remote code execution by authenticated users because the _from parameter in a URL is not validated in program/actions/settings/upload.php, leading to PHP Object Deserialization. |
|
|
|
