VDB
CNVD-2025-12609
CNVD-2025-12609
PUBLISHED
CVSS 9.899999618530273 CRITICAL
RoundCube Webmail是一款基于浏览器的开源多语言IMAP客户端,采用PHP+Ajax开发,提供类似桌面应用程序的操作界面和完整的邮件管理功能。 Roundcube Webmail存在反序列化漏洞,该漏洞源于未对actions/settings/upload.php中的_from参数进行校验所致,攻击者可利用该漏洞导致PHP对象反序列化,进一步获取服务器权限。
Risk Scores
CVSS 3.1
9.899999618530273
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| roundcube | webmail | 0, 1.6.0 |
| Roundcube | Webmail | 0, 1.6.0 |
Exploit Intelligence
- Evillm/CVE-2025-49113-PoC (github-poc-repo)
- Evillm/CVE-2025-49113-PoC (github-poc-repo)
- Roundcube Webmail post-auth RCE via PHP object deserialization (CVE-2025-49113) (github-poc-repo)
- Roundcube Webmail post-auth RCE via PHP object deserialization (CVE-2025-49113) (github-poc-repo)
- CVE-2025-49113 – Roundcube ≤1.6.10 post-auth RCE via PHP object deserialization (HackTheBox CTF) (github-poc-repo)
- CVE-2025-49113 – Roundcube ≤1.6.10 post-auth RCE via PHP object deserialization (HackTheBox CTF) (github-poc-repo)
- CVE-2025-49113 – Roundcube ≤1.6.10 post-auth RCE via PHP object deserialization (HackTheBox CTF) (github-poc)
- CVE-2025-49113 – Roundcube ≤1.6.10 post-auth RCE via PHP object deserialization (HackTheBox CTF) (github-poc)
- Roundcube Webmail post-auth RCE via PHP object deserialization (CVE-2025-49113) (github-poc)
- Roundcube Webmail post-auth RCE via PHP object deserialization (CVE-2025-49113) (github-poc)
…and 241 more exploits
Timeline
- May 19, 2025 CVE Published
- Jun 2, 2025 PoC Published
- Jun 2, 2025 PoC Published
- Jun 2, 2025 PoC Published
- Jun 2, 2025 PoC Published
- Jun 3, 2025 PoC Published
- Jun 3, 2025 PoC Published
- Jun 3, 2025 PoC Published
- Jun 4, 2025 PoC Published
- Jun 4, 2025 PoC Published
- Jun 4, 2025 PoC Published
- Jun 4, 2025 PoC Published
References
- https://roundcube.net/news/2025/06/01/security-updates-1.6.11-and-1.5.10 url
- https://github.com/roundcube/roundcubemail/pull/9865 url
- https://github.com/roundcube/roundcubemail/releases/tag/1.6.11 url
- https://github.com/roundcube/roundcubemail/commit/0376f69e958a8fef7f6f09e352c541b4e7729c4d url
- https://github.com/roundcube/roundcubemail/releases/tag/1.5.10 url
- https://github.com/roundcube/roundcubemail/commit/7408f31379666124a39f9cb1018f62bc5e2dc695 url
- https://github.com/roundcube/roundcubemail/commit/c50a07d88ca38f018a0f4a0b008e9a1deb32637e url
- https://fearsoff.org/research/roundcube url
- https://www.vicarius.io/vsociety/posts/cve-2025-49113-roundcube-vulnerability-detection url
- https://www.vicarius.io/vsociety/posts/cve-2025-49113-roundcube-mitigation-script url
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-49113 url
- http://www.openwall.com/lists/oss-security/2025/06/02/3 url
- https://lists.debian.org/debian-lts-announce/2025/06/msg00008.html url