net-imap

CVEs (1)

• CVE-2026-47240Jun 9, 2026
  Net::IMAP

  net-imap
  risk 0.00cvss —epss —

  Several Net::IMAP commands accept a "raw data" argument that is sent verbatim after validation to prevent command injection. However, if a server does not support non-synchronizing literals, it may still be possible to inject arbitrary IMAP commands inside non-synchronizing…