CVE-2012-4668

Roundcube Webmail < 0.8.1 - Cross-Site Scripting via Email Signature

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-4668. PoCs published by Shai rod.

AI-analyzed exploit summary This exploit demonstrates a stored XSS vulnerability in Roundcube Webmail 0.8.0 by sending an email with a malicious JavaScript payload in the body. The payload executes when the victim clicks the link in the email.

Description

Cross-site scripting (XSS) vulnerability in Roundcube Webmail 0.8.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the signature in an email.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Shai rod · pythonwebappsphp
https://www.exploit-db.com/exploits/20549

This exploit demonstrates a stored XSS vulnerability in Roundcube Webmail 0.8.0 by sending an email with a malicious JavaScript payload in the body. The payload executes when the victim clicks the link in the email.

Classification
Working Poc 100%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Roundcube Webmail 0.8.0
Auth required
Prerequisites: SMTP server access · valid credentials for sending email · victim interaction (clicking the link)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Scores

EPSS 0.0372
EPSS Percentile 88.4%

Details

CWE
CWE-79
Status published
Products (22)
roundcube/webmail 0.1 (6 CPE variants)
roundcube/webmail 0.1.1
roundcube/webmail 0.2 (3 CPE variants)
roundcube/webmail 0.2.1
roundcube/webmail 0.2.2
roundcube/webmail 0.3 (3 CPE variants)
roundcube/webmail 0.3.1
roundcube/webmail 0.4 (2 CPE variants)
roundcube/webmail 0.4.1
roundcube/webmail 0.4.2
... and 12 more
Published Aug 25, 2012
Tracked Since Feb 18, 2026