CVE-2019-12593

HIGH EXPLOITED NUCLEI

IceWarp Mail Server <= 10.4.4 - Local File Inclusion via Webmail Calendar Minimizer

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2019-12593 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including JameelNabbo. A Nuclei detection template is also available.

AI-analyzed exploit summary This exploit demonstrates a Local File Inclusion (LFI) vulnerability in IceWarp WebMail versions up to 10.4.4. The vulnerability allows an attacker to read arbitrary files on the server by manipulating the 'style' parameter in the URL.

Description

IceWarp Mail Server through 10.4.4 is prone to a local file inclusion vulnerability via webmail/calendar/minimizer/index.php?style=..%5c directory traversal.

Exploits (1)

exploitdb WORKING POC
by JameelNabbo · textwebappsphp
https://www.exploit-db.com/exploits/46959

This exploit demonstrates a Local File Inclusion (LFI) vulnerability in IceWarp WebMail versions up to 10.4.4. The vulnerability allows an attacker to read arbitrary files on the server by manipulating the 'style' parameter in the URL.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: IceWarp WebMail <= 10.4.4
No auth needed
Prerequisites: Access to the vulnerable IceWarp WebMail instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

IceWarp Mail Server <=10.4.4 - Local File Inclusion
HIGHby pikpikcu
Shodan: title:"icewarp" || http.title:"icewarp server administration" || http.title:"icewarp" || cpe:"cpe:2.3:a:icewarp:mail_server"
FOFA: title="icewarp server administration" || title="icewarp"

References (2)

Core 2

Scores

CVSS v3 7.5
EPSS 0.4097
EPSS Percentile 98.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

VulnCheck KEV 2023-11-26
CWE
CWE-22
Status published
Products (1)
icewarp/mail_server < 10.4.4
Published Jun 03, 2019
Tracked Since Feb 18, 2026