Lucene search
K

4 matches found

Github Security Blog
Github Security Blog
added 2026/02/14 6:30 a.m.7 views

ImapEngine affected by command injection via the ID command parameters

Versions of the package directorytree/imapengine before 1.22.3 are vulnerable to Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' via the id function in ImapConnection.php due to improperly escaping user input before including it in IMAP ID commands...

7.6CVSS5.6AI score0.00351EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/14 12:0 a.m.7 views

PT-2026-8056

Name of the Vulnerable Software and Affected Versions directorytree/imapengine versions prior to 1.22.3 Description The software contains a flaw due to improper handling of user-supplied data before it is used in IMAP ID commands within the ImapConnection.php file. Specifically, the id function...

7.6CVSS5.8AI score0.00351EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.34 views

Fedora 26 : 1:dovecot (2017-e8b639c286)

quota: Add plugin quotamaxmailsize setting to limit the maximum individual mail size that can be saved. + imapc: Add imapcfeatures=delay-login. If set, connecting to the remote IMAP server isn't done until it's necessary. + imapc: Add imapcconnectionretrycount and imapcconnectionretryinterval...

7.5CVSS6.4AI score0.0464EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/04/27 12:0 a.m.40 views

Fedora 25 : 1:dovecot (2017-6ef28e38d6)

quota: Add plugin quotamaxmailsize setting to limit the maximum individual mail size that can be saved. + imapc: Add imapcfeatures=delay-login. If set, connecting to the remote IMAP server isn't done until it's necessary. + imapc: Add imapcconnectionretrycount and imapcconnectionretryinterval...

7.5CVSS6.4AI score0.0464EPSS
Exploits0References2
Rows per page
Query Builder