CVE-2025-34490 | GFI MailEssentials up to 21.7 xml external entity reference

Inserito da Angelo Barbosa | Apr 28, 2025 | CVE

A vulnerability classified as critical was found in GFI MailEssentials up to 21.7. This vulnerability affects unknown code. The manipulation leads to xml external entity reference.

This vulnerability was named CVE-2025-34490. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-34490 | GFI MailEssentials up to 21.7 xml external entity reference

Post correlati

CVE-2024-57036 | TOTOLINK A810R 4.1.2cu.5032 HTTP Request downloadFile.cgi command injection

CVE-2024-51760 | RistrettoApps Dashing Memberships Plugin up to 1.1 on WordPress cross site scripting

CVE-2024-53673 | HPE Insight Remote Support prior 7.14.0.629 Java deserialization

CVE-2024-4913 | Campcodes Online Examination System 1.0 exam.php id sql injection