Vulnerabilities

CVE-2025-34401

by Fred · 09/12/2025

MailEnable versions prior to 10.54 contain a reflected cross-site scripting (XSS) vulnerability in the FieldBcc parameter of /Mondo/lang/sys/Forms/AddressBook.aspx. The FieldBcc value is not properly sanitized when processed via a GET request and is reflected inside a

More information : https://mailenable.com/Standard-ReleaseNotes.txt

Similar

Tags: Cybersecurity Alert