Critical 10-Year-Old Roundcube Webmail Bug Allows Authenticated Users Run Malicious Code

Vulnerability could be exploited to take over susceptible systems and execute arbitrary code. The vulnerability, tracked as CVE-2025-49113, carries a CVSS score of 9.9 out of 10.