Vulnerabilities

CVE-2025-34398

by Fred · 09/12/2025

MailEnable versions prior to 10.54 contain a reflected cross-site scripting (XSS) vulnerability in the AddressesBcc parameter of /Mondo/lang/sys/Forms/AddressBook.aspx. The AddressesBcc value is not properly sanitized when processed via a GET request and is reflected within a

More information : https://mailenable.com/Standard-ReleaseNotes.txt

Similar

Tags: Cybersecurity Alert