CVE-2026-2469 | directorytree imapengine up to 1.22.2 Downstream ImapConnection.php id injection

Inserito da Angelo Barbosa | Feb 14, 2026 | CVE

A vulnerability labeled as problematic has been found in directorytree imapengine up to 1.22.2. This impacts the function ID of the file ImapConnection.php of the component Downstream Component. Such manipulation leads to injection.

This vulnerability is uniquely identified as CVE-2026-2469. The attack can be launched remotely. No exploit exists.

The affected component should be upgraded.

CVE-2026-2469 | directorytree imapengine up to 1.22.2 Downstream ImapConnection.php id injection

Post correlati

CVE-2024-47655 | Shilpi Computers Client Dashboard prior 9.7.0 unrestricted upload (CIVN-2024-0313)

CVE-2023-30867 | Apache StreamPark up to 2.1.1 Name-based Fuzzy Search sql injection

CVE-2024-5914 | Palo Alto Cortex XSOAR CommonScripts prior 1.12.33 command injection

CVE-2025-10326 | MiczFlor RPi-Jukebox-RFID up to 2.8.0 single.php playlist os command injection