CVE advisoryKnown Exploit
CVE-2023-43770
Roundcube Webmail Cross-Site Scripting Vulnerability
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
A vulnerability in Roundcube webmail allows for cross-site scripting through crafted links in plain text emails, potentially exposing data. This impacts organizations using the affected webmail system, posing a risk of unauthorized access to sensitive information.