← ExploitWatch
HomeExploited Vulnerabilities

CVE-2021-44026 — Actively Exploited: Roundcube Webmail (Roundcube)

Roundcube Webmail is vulnerable to SQL injection via search or search_params.

CVE IDCVE-2021-44026
VendorRoundcube
ProductRoundcube Webmail
Vulnerability nameRoundcube Webmail SQL Injection Vulnerability
Date added2023-06-22
Remediation due2023-07-13
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionRoundcube Webmail is vulnerable to SQL injection via search or search_params.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →