Users May 2024

users@lists.roundcube.net

6 participants
4 discussions

Security updates 1.5.7 and 1.6.7 released
by Aleksander Machniak 12 Jun '24

12 Jun '24

We just published security updates to the 1.6 and 1.5 LTS versions of Roundcube Webmail. They both contain fixes for recently reported security vulnerabilities. - Fix cross-site scripting (XSS) vulnerability in handling SVG animate attributes. Credits for this finding to Valentin T. and Lutz Wolf of CrowdStrike. - Fix cross-site scripting (XSS) vulnerability in handling list columns from user preferences. Credits for this finding to Huy Nguyễn Phạm Nhật. - Fix command injection via crafted im_convert_path/im_identify_path on Windows. Credits for this finding to Huy Nguyễn Phạm Nhật. See the full changelogs in the release notes on the Github download pages for the updated versions 1.6.7 and 1.5.7. https://github.com/roundcube/roundcubemail/releases/tag/1.6.7 https://github.com/roundcube/roundcubemail/releases/tag/1.5.7 We strongly recommend to update all productive installations of Roundcube 1.6.x and 1.5.x with this new versions. -- Alec

7 7

[RCU]best practice for roundcube + 2fa
by Marc 13 May '24

13 May '24

Is there a best practice for enabling 2fa with roundcube?

2 2

[RCU]example how to add form fields to a template
by Marc 12 May '24

12 May '24

Can anyone help me with an example of how to add form fields to an existing template loaded from /skins/

1 0

[RCU]Interface Layout
by marcio＠nova-acropole.org.br 02 May '24

02 May '24

Hello, In previous versions, in Roundcube you could change the layout. I didn't find this option in the User Interface. Does anyone know how I can make this feature available to customers again? Thanks, Márcio

3 2

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

Users May 2024