CVE-2025-34402 | MailEnable up to 10.53 AddressBook.aspx LoadCurAddresses FieldCc cross site scripting

A vulnerability categorized as problematic has been discovered in MailEnable up to 10.53. Affected by this issue is the function LoadCurAddresses of the file /Mondo/lang/sys/Forms/AddressBook.aspx. The manipulation of the argument FieldCc results in cross site scripting.

This vulnerability is known as CVE-2025-34402. It is possible to launch the attack remotely. No exploit is available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More