External Control of File Name or Path Affecting egroupware/egroupware package, versions <23.1.20260601>=26.0.20251208, <26.5.20260507


Severity

Recommended
0.0
high
0
10

CVSS assessment by Snyk's Security Team. Learn more

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk IDSNYK-PHP-EGROUPWAREEGROUPWARE-17878628
  • published7 Jul 2026
  • disclosed7 Jul 2026
  • creditUnknown

Introduced: 7 Jul 2026

NewCVE-2026-45016  (opens in a new tab)
CWE-73  (opens in a new tab)

How to fix?

Upgrade egroupware/egroupware to version 23.1.20260601, 26.5.20260507 or higher.

Overview

egroupware/egroupware is a library that extends a classic groupware with an integrated CRM-system, a secure file-server and Collabora Online Office.

Affected versions of this package are vulnerable to External Control of File Name or Path via the processURL2InlineImages process. An attacker can access arbitrary files on the server by embedding a specially crafted image URL (such as file://) in the HTML body of an email, which is then processed and attached as an inline MIME part in outgoing mail. This allows exposure of sensitive files readable by the web server process, such as configuration files, credentials, or private keys.

CVSS Base Scores

version 4.0
version 3.1