Roundcube Community Forum

 

Recent posts

#1
Release Discussion / mail.dcaky.cn
Last post by legit77777 - Today at 04:44:40 PM
does http://mail.dcaky.cn/ not have a delete button for mail??
#2
API Based Plugins / Does RoundcubePlus CalDAV supp...
Last post by ikus060 - Today at 11:29:44 AM
Hi all,

I'm running into an issue where recurring event exceptions (single-instance overrides using RECURRENCE-ID) seem to get silently dropped by the CalDAV backend. I wanted to check here before filing a bug report — maybe I'm missing something, or maybe this is a known limitation.

Backend: RoundcubePlus//XCalendar//Sabre//VObject//4.5.6//EN

The issue

When I PUT an ICS containing a recurring master event (RRULE) plus a modified single occurrence (same UID, with RECURRENCE-ID), the server responds 204 No Content (success). But a subsequent GET on that same resource only returns the master event — the exception/override VEVENT is gone.

```
BEGIN:VCALENDAR
PRODID:-//Test//EN
VERSION:2.0
CALSCALE:GREGORIAN
BEGIN:VEVENT
DTSTART:20260317T140000Z
DTEND:20260317T150000Z
RRULE:FREQ=WEEKLY
DTSTAMP:20260714T144618Z
SEQUENCE:10
STATUS:CONFIRMED
SUMMARY:Recurring Master
TRANSP:OPAQUE
UID:test-recur-exception-001
END:VEVENT
BEGIN:VEVENT
DTSTART:20260609T143000Z
DTEND:20260609T150000Z
RECURRENCE-ID:20260609T140000Z
DTSTAMP:20260714T144618Z
SEQUENCE:11
STATUS:CONFIRMED
SUMMARY:Exception - moved 30 min later
TRANSP:OPAQUE
UID:test-recur-exception-001
END:VEVENT
END:VCALENDAR
```

The GET response should contain two VEVENT blocks: the master (with RRULE) and the exception (with RECURRENCE-ID:20260609T140000Z and the updated time of 14:30–15:00).

But with my instance of roundcube, only the master VEVENT is returned. The exception is gone entirely — no error, no partial data, just missing.

1. Has anyone else run into this with RoundcubePlus's CalDAV backend?
2. Is there a server-side config option that needs to be enabled to support recurrence overrides?
3. Is this a known limitation of this sabre/vobject-based backend, or should I file this as a bug?

#3
General Discussion / Re: layperson needing help
Last post by SKaero - July 08, 2026, 01:29:48 PM
If you only have access to the Roundcube account you will not have access to add any plugins. If there isn't an option to change the password in the settings then you'll need to contact the person who you bought the account from and ask them how they support changing the password.
#4
General Discussion / layperson needing help
Last post by vitor - July 08, 2026, 10:52:56 AM
I bought an account on a website and received the email address @elitegamers.club, but I've never had any contact with that type of email. I don't know anything about plugins. Is it possible to change the password?
#5
News & Announcements / Security updates 1.6.17 and 1....
Last post by SKaero - July 06, 2026, 01:59:52 PM
We just published security updates to the 1.6 LTS and 1.7 versions of Roundcube Webmail. They both contain fixes for recently reported security vulnerabilities.

Security fixes
  • Fix an infinite loop in TNEF (winmail.dat) decoder (#10193), reported by stafra.
  • Fix various vulnerabilities in the password plugin using session-injected username, reported by Glendaenri and peppersghost.
  • Fix stored XSS via unescaped attachment MIME type on the attachment-validation warning page [CVE-2026-54432], reported by Bohdan Kurinnoy, Samsung R&D Institute Ukraine (SRUKR).
  • Fix SSRF bypass via specific local address URLs - two new cases, reported by Leenear.
  • Fix zero-click stored XSS in plain-text rendering [CVE-2026-54433], reported by Bohdan Kurinnoy, Samsung R&D Institute Ukraine (SRUKR).
  • Fix DoS via crafted compressed-RTF size in the TNEF (winmail.dat) file, reported by h0rk1p.

See the full changelogs in the release notes on the Github download pages for the updated versions 1.6.17 and 1.7.2.

We strongly recommend to update all productive installations of Roundcube 1.6.x and 1.7.x with this new versions.

Source: https://roundcube.net/news/2026/07/05/security-updates-1.6.17-and-1.7.2
Get it Now: https://roundcube.net/download
#6
Requests / Re: Text Alerts
Last post by Shinard - July 02, 2026, 11:40:30 AM
I've set up a few text alerts for different projects and it's honestly been a lot more reliable than push notifications for me, especially since I don't always have every app open or browser notifications enabled. You can pretty much trigger a text from new emails or other alerts depending how you filter them and which tools you use. I do agree that since senders have to eat the costs, it pays to make sure they're meaningful messages. Also, for stuff like real estate, I've seen people use ringless voicemail for real estate campaigns as a way to reach opted-in contacts without being super intrusive. It's sort of similar in that it targets mobile users but keeps the outreach more convenient for everyone.
#7
Pending Issues / Re: Not Receiving Emails
Last post by JohnDoh - July 02, 2026, 02:16:56 AM
Roundcube is a mail client so it has no role in receiving email. Have you checked your SMTP server logs?
#8
Pending Issues / Not Receiving Emails
Last post by jsauce - July 01, 2026, 03:02:33 PM
I have two accounts through webmail/roundcube. One of them I can receive emails on with no issues what so ever. The other account simply refuses to receive emails. They are not being blocked or marked as spam. I am not sure where to even start as to figuring out how to resolve this issue. Both accounts are set up the exact same.
#9
Roundcube Discussion / Delivery Notifcations
Last post by Jimmk - June 27, 2026, 09:40:41 AM
This there a way to have a notification sent that informs someone of a new email, but not actually send the email to the person?
#10
General Discussion / Re: Android App display proble...
Last post by Datacom1 - June 26, 2026, 08:50:57 PM
I had that problem and I found my browser had the web page in desktop mode,  once I unclicked that box,  the site worked properly.