Tag

Imap

3 briefs RSS

PraisonAI: IMAP Command Injection via Unsanitized Email Search Parameters

A command injection vulnerability (CVE-NONE) exists in PraisonAI's `praisonaiagents` package (versions <= 1.6.48) where unsanitized LLM-controlled parameters are directly interpolated into IMAP SEARCH commands, allowing attackers to craft malicious prompts to inject arbitrary IMAP commands, leading to unauthorized email exfiltration, deletion, or denial-of-service when email tools are configured.

praisonaiagents command-injection llm-agent imap email data-exfiltration

3r 4t 2d ago

high advisory

CVE-2026-42257 net-imap Command Injection Vulnerability

2 rules 1 TTP 1 CVE

CVE-2026-42257 is a command injection vulnerability in net-imap that could allow an attacker to execute arbitrary commands on a vulnerable system.

net-imap command-injection imap cve-2026-42257 execution microsoft

2r 1t 1c May 11, 2026

medium advisory

Self-Hosted Email Threat Detection Tool

2 rules

A user created a self-hosted email threat detection tool, named VerdictMail, employing IMAP IDLE for real-time monitoring and multi-stage enrichment via SPF, DKIM, DMARC, DNSBL, WHOIS, URLhaus, and VirusTotal, coupled with an LLM for threat assessment.

email-security threat-detection imap

2r Mar 18, 2026