CVE-2025-52374
The CVE-2025-52374 entry concerns hMailServer 5.8.6 and 5.6.9-beta. A hardcoded cryptographic key in Encryption.cs is cited as the root cause, enabling an attacker to decrypt passwords stored in hMailAdmin.exe.config and potentially access other hMailServer admin consoles that use configured conn...