CVE-2025-34399 | MailEnable up to 10.53 AddressBook.aspx LoadCurAddresses AddressesCc cross site scripting

A vulnerability, which was classified as problematic, has been found in MailEnable up to 10.53. Impacted is the function LoadCurAddresses of the file /Mondo/lang/sys/Forms/AddressBook.aspx. The manipulation of the argument AddressesCc leads to cross site scripting.

This vulnerability is listed as CVE-2025-34399. The attack may be initiated remotely. There is no available exploit.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More