CVE-2025-34404 | MailEnable up to 10.53 compose.aspx PageLoad InstanceScope cross site scripting

A vulnerability was found in MailEnable up to 10.53. It has been rated as problematic. Affected by this vulnerability is the function PageLoad of the file /Mondo/lang/sys/Forms/CAL/compose.aspx. The manipulation of the argument InstanceScope leads to cross site scripting.

This vulnerability is traded as CVE-2025-34404. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More