Roundcube

Security experts warn of a critical vulnerability in Roundcube webmail, CVE-2025-49113, which has been exploited by hackers selling RCE exploits online. The flaw has led to a patch but concerns remain over its potential impact due to the application’s popularity.