CVE-2025-40632 | Icewarp Mail Server 11.4.0 lastLogin Cookie cross site scripting

Inserito da Angelo Barbosa | Mag 16, 2025 | CVE

A vulnerability was found in Icewarp Mail Server 11.4.0. It has been classified as problematic. Affected is an unknown function of the component lastLogin Cookie Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-40632. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-40632 | Icewarp Mail Server 11.4.0 lastLogin Cookie cross site scripting

Post correlati

CVE-2024-47594 | SAP NetWeaver Enterprise Portal 7.5 KMC Servlet cross site scripting

CVE-2022-48999 | Linux Kernel up to 5.4.225/5.10.157/5.15.81/6.0.11 ipv4 fib_info out-of-bounds

CVE-2024-8721 | Tracking Code Manager Plugin up to 2.3.0 on WordPress cross site scripting

CVE-2023-51745 | Siemens JT2Go/Teamcenter Visualization CGM File stack-based overflow (ssa-794653)