CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

9 matches found

RedhatCVE•added 2025/12/19 9:14 p.m.•3 views

CVE-2025-34425

MailEnable versions prior to 10.54 contain a reflected cross-site scripting XSS vulnerability in the WindowContext parameter of /Mondo/lang/sys/Forms/MAI/compose.aspx. The WindowContext value is not properly sanitized when processed via a GET request and is reflected within a...

6.1CVSS5.8AI score0.00014EPSS

Exploits0References1

CNVD•added 2025/12/12 12:0 a.m.•1 views

MailEnable WindowContext Parameter Cross-Site Scripting Vulnerability

MailEnable is a commercial email server software designed for Windows operating systems that provides end-to-end email hosting and collaboration solutions. MailEnable suffers from a cross-site scripting vulnerability that originates from improperly cleaned WindowContext parameters in...

6.1CVSS6.3AI score0.00014EPSS

Exploits0References1

EUVD•added 2025/12/10 12:30 a.m.•2 views

EUVD-2025-202326

MailEnable versions prior to 10.54 contain a reflected cross-site scripting XSS vulnerability in the WindowContext parameter of /Mondo/lang/sys/Forms/MAI/compose.aspx. The WindowContext value is not properly sanitized when processed via a GET request and is reflected within a context in the...

5.3CVSS5.3AI score0.00014EPSS

Exploits0References4

NVD•added 2025/12/09 10:16 p.m.•1 views

CVE-2025-34425

MailEnable versions prior to 10.54 contain a reflected cross-site scripting XSS vulnerability in the WindowContext parameter of /Mondo/lang/sys/Forms/MAI/compose.aspx. The WindowContext value is not properly sanitized when processed via a GET request and is reflected within a context in the...

6.1CVSS0.00014EPSS

Exploits0References3

OSV•added 2025/12/09 10:16 p.m.•1 views

CVE-2025-34425

MailEnable versions prior to 10.54 contain a reflected cross-site scripting XSS vulnerability in the WindowContext parameter of /Mondo/lang/sys/Forms/MAI/compose.aspx. The WindowContext value is not properly sanitized when processed via a GET request and is reflected within a context in the...

6.1CVSS5.9AI score0.00014EPSS

Exploits0References3

CVE•added 2025/12/09 9:13 p.m.•11 views

CVE-2025-34425

MailEnable

6.1CVSS5.4AI score0.00014EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2025/12/09 9:13 p.m.•1 views

CVE-2025-34425 MailEnable < 10.54 Reflected XSS in WindowContext Parameter of MAI/compose.aspx

MailEnable versions prior to 10.54 contain a reflected cross-site scripting XSS vulnerability in the WindowContext parameter of /Mondo/lang/sys/Forms/MAI/compose.aspx. The WindowContext value is not properly sanitized when processed via a GET request and is reflected within a context in the...

5.3CVSS5.4AI score0.00014EPSS

Exploits0References3

Cvelist•added 2025/12/09 9:13 p.m.•15 views

CVE-2025-34425 MailEnable < 10.54 Reflected XSS in WindowContext Parameter of MAI/compose.aspx

MailEnable versions prior to 10.54 contain a reflected cross-site scripting XSS vulnerability in the WindowContext parameter of /Mondo/lang/sys/Forms/MAI/compose.aspx. The WindowContext value is not properly sanitized when processed via a GET request and is reflected within a context in the...

5.3CVSS0.00014EPSS

Exploits0References3

CNNVD•added 2025/12/09 12:0 a.m.•1 views

MailEnable 跨站脚本漏洞

MailEnable is a commercial email server software designed for Windows operating systems that provides end-to-end email hosting and collaboration solutions. MailEnable suffers from a cross-site scripting vulnerability that originates from improperly cleaned WindowContext parameters in...

6.1CVSS6.2AI score0.00014EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by