EIP-2026-103181

PRE-CVE

Open WebMail 1.x/2.x - Remote Command Execution Variant

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103181. PoCs published by Nullbyte.

AI-analyzed exploit summary The vulnerability in Open WebMail allows remote command execution due to insufficient sanitization of shell metacharacters passed via URI parameters. The provided example demonstrates exploiting this via the 'loginname' parameter in a crafted request to 'userstat.pl'.

Description

Open WebMail 1.x/2.x - Remote Command Execution Variant

Exploits (1)

exploitdb WRITEUP VERIFIED
by Nullbyte · textremotelinux
https://www.exploit-db.com/exploits/24106

The vulnerability in Open WebMail allows remote command execution due to insufficient sanitization of shell metacharacters passed via URI parameters. The provided example demonstrates exploiting this via the 'loginname' parameter in a crafted request to 'userstat.pl'.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Open WebMail (version not specified)
No auth needed
Prerequisites: Access to the vulnerable Open WebMail instance
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026