Roundcube arbitrary file read Description   There is a potentially arbitrary file read in roundcube from authenticated users which upload a vCard with a crafted POST request.       Default configuration   Profiles High Medium Low Internet Action Block Block Block Block Alarm Level Major Minor Minor Major       References   URL: http://www.openwall.com/lists/oss-security/2015/07/06/10       Available since   ASQ v5.0.0       Protects   RoundCube Multiple Vulnerabilities Fixed by 1.1.2 and 1.0.6 100 last CVE   CVE-2015-5383 CVE-2015-5382 CVE-2015-5381 CVE-2015-1433    Risk level  Critical