THREAT OPS › Threat News › [fulldis] CVE-2026-58451 - Horde Groupware IMP path traversal vuln
[fulldis] CVE-2026-58451 - Horde Groupware IMP path traversal vuln
<p>Posted by ㅤevan via Fulldisclosure on Jul 02</p>this is my first time sending to a mailing list so ive chosen<br /> something easy. here goes:<br /> <br /> Summary: Horde Groupware’s IMP Webmail solution contains a path<br /> traversal/local file inclusion vulnerability which could be exploited<br /> to escalate privileges or bypass authentication (through CSRF if<br /> unauthenticated).<br />
Indicators of compromise
- CVE-2026-58451cve
Original source: https://seclists.org/fulldisclosure/2026/Jul/8