7.4 High
AI Score
Confidence
Low
0.123 Low
EPSS
Percentile
95.4%
rcube_image.php in Roundcube Webmail before 1.4.4 allows attackers to execute arbitrary code via shell metacharacters in a configuration setting for im_convert_path or im_identify_path.