Skip to content

CVE lookup

CVE-2026-60102

Pruva has a verified reproduction for CVE-2026-60102: Horde VFS < 3.0.1 OS command injection via Horde_Vfs_Smb driver. The canonical evidence record is REPRO-2026-00288.

REPRO

REPRO-2026-00288

Package

horde/vfs · github

Severity

HIGH

Status

published