Stats Digest Feeds
โ† Back to all CVEs

CVE-2026-62644

MEDIUM NVD
CVSS Score 6.4
Severity MEDIUM
Published Jul 14, 2026
Vendor unknown

Description

In Roundcube Webmail before 1.6.17 and 1.7.x before 1.7.2, the password plugin of the Roundcube Webmail was subject to username spoofing via session data, which could lead to account takeover.

References