EIP-2026-103181
PRE-CVEOpen WebMail 1.x/2.x - Remote Command Execution Variant
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-103181. PoCs published by Nullbyte.
AI-analyzed exploit summary The vulnerability in Open WebMail allows remote command execution due to insufficient sanitization of shell metacharacters passed via URI parameters. The provided example demonstrates exploiting this via the 'loginname' parameter in a crafted request to 'userstat.pl'.
Description
Open WebMail 1.x/2.x - Remote Command Execution Variant
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Nullbyte · textremotelinux
https://www.exploit-db.com/exploits/24106
The vulnerability in Open WebMail allows remote command execution due to insufficient sanitization of shell metacharacters passed via URI parameters. The provided example demonstrates exploiting this via the 'loginname' parameter in a crafted request to 'userstat.pl'.
Classification
Writeup 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target:
Open WebMail (version not specified)
No auth needed
Prerequisites:
Access to the vulnerable Open WebMail instance
MITRE ATT&CK
mistral-large-3 · analyzed Feb 18, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026