Vulnerabilities

CVE-2026-44129

by Fred · 08/05/2026

SEPPmail Secure Email Gateway before version 15.0.4 contains a server-side template injection vulnerability in the new GINA UI because an endpoint accepts attacker-controlled template, allowing remote attackers to execute arbitrary template expressions and potentially achieve remote code execution depending on the enabled template plugins.

More information : https://downloads.seppmail.com/extrelnotes/150/ERN15.0.html#security

Similar

Tags: Cybersecurity Alert