CVE-2025-40632 | Icewarp Mail Server 11.4.0 lastLogin Cookie cross site scripting

Inserito da Angelo Barbosa | Mag 16, 2025 | CVE

A vulnerability was found in Icewarp Mail Server 11.4.0. It has been classified as problematic. Affected is an unknown function of the component lastLogin Cookie Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-40632. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-40632 | Icewarp Mail Server 11.4.0 lastLogin Cookie cross site scripting

Post correlati

CVE-2024-5410 | ORing IAP-420 up to 2.01e Web Interface cross site scripting

CVE-2025-20897 | Samsung Secure Folder improper export of android application components

CVE-2023-52689 | Linux Kernel up to 6.7.1 ALSA scarlett2_meter_ctl_get meter_level_map[] Privilege Escalation (74e3de7cdcc3/993f7b42fa06)

CVE-2025-44895 | Planet Technology FW-WGS-804HPT 1.305b241111 web_acl_ipv4BasedAceAdd ipv4Aclkey stack-based overflow