CVE-2026-49103 | Webmin up to 2.639 Mailboxes path traversal

May 27, 2026 Yanac

A vulnerability labeled as critical has been found in Webmin up to 2.639. This affects an unknown function of the component Mailboxes. Executing a manipulation can lead to path traversal: ‘../filedir’.

This vulnerability appears as CVE-2026-49103. The attack may be performed from remote. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More

CVE-2026-31266 | Craft CMS up to 5.9.5 Migrate Endpoint /actions/app/migrate missing authentication
CVE-2026-49047 | DearHive DearFlip Plugin up to 2.4.27 on WordPress authorization