# CVE-2023-43770

> Roundcube before 1.4.14, 1.5.x before 1.5.4, and 1.6.x before 1.6.3 allows XSS via text/plain e-mail messages with crafted links because of program/lib/Roundcube/rcube_string_replacer.php behavior.

- **CVSS:** 6.1 (MEDIUM)
- **EPSS:** 80.4%
- **CISA KEV:** yes
- **CWE:** CWE-79

Canonical: https://intel.threadlinqs.com/cve/CVE-2023-43770
Full threat coverage + IOCs via the Threadlinqs MCP server (Purple tier): https://intel.threadlinqs.com/mcp