MailEnable 4.24 Professional Edition
Approved changes feed: RSS · Atom
cpe:2.3:a:mailenable:mailenable:4.24:-:pro:*:*:*:*:*
part: a version: 4.24 update: -
| Vendor | Mailenable (ac781917-bc09-5845-a37c-c45d67bfa524) |
|---|---|
| Product | Mailenable (9e2ec56e-3deb-5201-b101-fcc46de7b710) |
| Edition | pro |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2012-0389 |
vulnerable | 2026-06-08 05:00:42.186281 |
Details available
Cross-site scripting (XSS) vulnerability in ForgottenPassword.aspx in MailEnable Professional, Enterprise, and Premium 4.26 and earlier, 5.x before 5.53, and 6.x before 6.03 allows remote attackers to inject arbitrary web script or HTML via the Username parameter.
Published: 2012-01-24T18:00:00.000Z
Updated: 2024-08-06T18:23:30.995Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2010-2580 |
vulnerable | 2026-06-08 04:55:08.819392 |
Details available
The SMTP service (MESMTPC.exe) in MailEnable 3.x and 4.25 does not properly perform a length check, which allows remote attackers to cause a denial of service (crash) via a long (1) email address in the MAIL FROM command, or (2) domain name in the RCPT TO command, which triggers an "unhandled invalid parameter error."
Published: 2010-09-15T17:26:00.000Z
Updated: 2024-08-07T02:39:37.493Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.