VYPR

Imapengine

by DirectoryTree

Source repositories

CVEs (1)

  • CVE-2026-2469HigFeb 14, 2026
    risk 0.42cvss 7.6epss 0.00

    Versions of the package directorytree/imapengine before 1.22.3 are vulnerable to Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') via the id() function in ImapConnection.php due to improperly escaping user input before including…