Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-35538

An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. Unsanitized IMAP SEARCH command arguments could lead to IMAP injection or CSRF bypass during mail search.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.5%
CVSS Severity
CVSS v3 Score 3.1
Products affected by CVE-2026-35538


Products
Pricing
Contact Us

Shodan ® - All rights reserved