CVE-2026-48845 | Roundcube Webmail up to 1.6.15/1.7.0 Email Message resource transfer

A vulnerability classified as critical has been found in Roundcube Webmail up to 1.6.15/1.7.0. Affected by this issue is some unknown functionality of the component Email Message Handler. Performing a manipulation results in incorrect resource transfer.

This vulnerability was named CVE-2026-48845. The attack may be initiated remotely. There is no available exploit.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More