CVE-2025-40631 | Icewarp Mail Server 11.4.0 HTTP Header Host http headers for scripting syntax

Inserito da Angelo Barbosa | Mag 16, 2025 | CVE

A vulnerability, which was classified as problematic, was found in Icewarp Mail Server 11.4.0. This affects an unknown part of the component HTTP Header Handler. The manipulation of the argument Host leads to improper neutralization of http headers for scripting syntax.

This vulnerability is uniquely identified as CVE-2025-40631. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-40631 | Icewarp Mail Server 11.4.0 HTTP Header Host http headers for scripting syntax

Post correlati

CVE-2022-46088 | Online Flight Booking Management System 1.0 Feedback Form cross site scripting

CVE-2025-32444 | vLLM up to 0.8.4 Mooncake deserialization (GHSA-hj4w-hm2g-p6w5)

CVE-2024-24572 | WillyXJ facileManager up to 4.5.0 Parameter admin-logs.php extract $_REQUEST sql injection (GHSA-xw34-8pj6-75gc)

CVE-2024-49265 | Booking.com Banner Creator Plugin up to 1.4.6 on WordPress cross site scripting