📦 Mailenable
by Mailenable
🔍 What is Mailenable?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
MailEnable versions before 10.54 store user and administrative passwords in plaintext within the AUTH.TAB file with overly permissive filesystem permissions. This allows any local authenticated user w...
MailEnable versions before 10.54 store user and administrative passwords in plaintext within the AUTH.SAV file with overly permissive filesystem permissions. This allows any local authenticated user w...
MailEnable versions before 10.54 have a DLL hijacking vulnerability where the administrative executable loads MEAIAU.DLL from its installation directory without proper security checks. Local attackers...
This vulnerability allows local attackers to execute arbitrary code on MailEnable servers by planting a malicious DLL in the installation directory. Attackers with write access to the MailEnable direc...
MailEnable versions before 10.54 have a DLL hijacking vulnerability where the administrative executable loads MEAISO.DLL from its installation directory without proper validation. Local attackers with...
MailEnable versions before 10.54 have a DLL hijacking vulnerability where the administrative executable loads MEAIMF.DLL from its installation directory without proper security checks. Local attackers...
This vulnerability allows local attackers with write access to MailEnable's installation directory to execute arbitrary code by planting a malicious DLL. The MailEnable administrative executable loads...
MailEnable versions before 10.54 have a DLL hijacking vulnerability where the administrative executable loads MEAIAM.DLL from its installation directory without proper security checks. Local attackers...
MailEnable versions before 10.54 have a DLL hijacking vulnerability where the administrative executable loads MEAISP.DLL from its installation directory without proper validation. Local attackers with...
MailEnable versions before 10.54 have a DLL hijacking vulnerability where the administrative executable loads MEAIPC.DLL from its installation directory without proper security checks. Local attackers...
This vulnerability allows local attackers with write access to MailEnable's installation directory to execute arbitrary code by planting a malicious DLL. It affects MailEnable versions before 10.54 an...
MailEnable versions before 10.54 have a DLL hijacking vulnerability where the administrative executable loads MEAINFY.DLL from its directory without proper validation. Local attackers with write acces...
MailEnable versions before 10.54 contain a reflected XSS vulnerability in the WindowContext parameter of the compose.aspx page. An attacker can craft malicious links that execute arbitrary JavaScript ...
MailEnable versions before 10.54 contain a reflected XSS vulnerability in the Id parameter of /Mobile/ContactDetails.aspx. Attackers can craft malicious links that execute arbitrary JavaScript in vict...
MailEnable versions before 10.54 contain a reflected cross-site scripting vulnerability in the theme parameter of Statistics.aspx. Attackers can craft malicious links that execute JavaScript in victim...
MailEnable versions before 10.54 contain a reflected cross-site scripting (XSS) vulnerability in the Added parameter of /Mondo/lang/sys/Forms/MAI/AddRecipientsResult.aspx. Attackers can craft maliciou...
MailEnable versions before 10.54 contain a reflected cross-site scripting vulnerability in the Failed parameter of AddRecipientsResult.aspx. Attackers can craft malicious links that execute JavaScript...
MailEnable versions before 10.54 contain a reflected XSS vulnerability in the AddressesBcc parameter of the AddressBook.aspx page. Attackers can craft malicious URLs that execute JavaScript in victims...
MailEnable versions before 10.54 contain a reflected cross-site scripting vulnerability in the AddressesCc parameter of the address book page. Attackers can craft malicious URLs that execute JavaScrip...
MailEnable versions before 10.54 contain a reflected XSS vulnerability in the AddressesTo parameter of the address book page. Attackers can craft malicious URLs that execute JavaScript in victims' bro...
MailEnable versions before 10.54 contain a reflected XSS vulnerability in the AddressBook.aspx FieldBcc parameter. Attackers can craft malicious URLs that execute JavaScript in victims' browsers when ...
MailEnable versions before 10.54 contain a reflected cross-site scripting vulnerability in the FieldCc parameter of the AddressBook.aspx page. Attackers can craft malicious URLs that execute JavaScrip...
MailEnable versions before 10.54 contain a reflected XSS vulnerability in the AddressBook.aspx page's FieldTo parameter. Attackers can craft malicious URLs that execute JavaScript in victims' browsers...
MailEnable versions before 10.54 contain a reflected cross-site scripting vulnerability in the InstanceScope parameter of the calendar compose page. This allows attackers to execute arbitrary JavaScri...
MailEnable versions before 10.54 contain a reflected XSS vulnerability in the Message parameter of /Mobile/Compose.aspx. Attackers can craft malicious URLs that execute JavaScript in victims' browsers...