Does this CVE affect MiaBs roundcube installation? I`ve seen that archive plugin is at least installed. There are also quite some updates since november 2017, but the may not affect MiaBs rc deployment significantly.
Any news about this? Seems like the current MIAB version is exploitable.
Thanks for the reminder. I just posted a new release of Mail-in-a-Box with the fixed version of Roundcube.
Thank you for the great work Josh! Extremely satisfied user, I have a family server and a personal one.