Critical Roundcube Webmail Vulnerability Let Attackers Inject SQL Queries

📅 28 May 2026 at 11:15 UTC📰 Cyber Security NewsView original source ↗

Roundcube Webmail users are being urged to apply urgent updates after developers patched multiple security flaws. Including a critical pre-authentication SQL injection vulnerability that could allow attackers to manipulate backend databases without logging in. The issues affect Roundcube versions 1.6. x and 1.7. x, which are widely used across enterprise and hosting environments. The vulnerability, […] The post Critical Roundcube Webmail Vulnerability Let Attackers Inject SQL Queries appeared first on Cyber Security News.

Read the full article

This is a curated summary. The complete article is available at Cyber Security News.

Read on Cyber Security News ↗

← Back to feed