CVE-2025-34406
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-12-09

Last updated on: 2025-12-09

Assigner: VulnCheck

Description
MailEnable versions prior to 10.54 contain a reflected cross-site scripting (XSS) vulnerability in the Id parameter of /Mobile/ContactDetails.aspx. The Id value is not properly sanitized when processed via a GET request and is reflected within a <script> block in the response. By supplying a crafted payload that terminates an existing JavaScript function, inserts attacker-controlled script, and comments out remaining code, a remote attacker can execute arbitrary JavaScript in a victim’s browser when the victim opens a malicious link. Successful exploitation can redirect victims to malicious sites, steal cookies not protected by HttpOnly, inject arbitrary HTML or CSS, and perform actions as the authenticated user.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-09
Last Modified
2025-12-09
Generated
2026-06-16
AI Q&A
2025-12-09
EPSS Evaluated
2026-06-15
NVD
CVE-2025-34406
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
mailenable mailenable 10.54
mailenable mailenable to 10.54 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-79 The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a reflected cross-site scripting (XSS) issue in MailEnable versions prior to 10.54, specifically in the Id parameter of /Mobile/ContactDetails.aspx. The Id parameter is not properly sanitized when processed via a GET request and is reflected inside a <script> block in the response. An attacker can craft a payload that breaks out of the existing JavaScript context, inject malicious script, and comment out the rest of the code. When a victim opens a malicious link containing this payload, the attacker can execute arbitrary JavaScript in the victim's browser.

Impact Analysis

Exploitation of this vulnerability can allow an attacker to redirect victims to malicious websites, steal cookies that are not protected by the HttpOnly flag, inject arbitrary HTML or CSS, and perform actions on behalf of the authenticated user in the application.

Detection Guidance

This vulnerability can be detected by testing the /Mobile/ContactDetails.aspx endpoint with crafted GET requests that include malicious payloads in the Id parameter to see if the response reflects the input within a <script> block without proper sanitization. For example, you can use curl or similar HTTP clients to send requests like: curl -v "http://<target>/Mobile/ContactDetails.aspx?Id=<script>alert(1)</script>" and observe if the response contains the injected script. Monitoring web server logs for suspicious requests to this endpoint with unusual Id parameter values may also help detect exploitation attempts. [2]

Mitigation Strategies

Immediate mitigation steps include upgrading MailEnable to version 10.54 or later, where this reflected XSS vulnerability has been fixed. Additionally, applying input validation and sanitization on the Id parameter, enforcing secure cookie flags such as HttpOnly and Secure, and educating users to avoid clicking suspicious links can help reduce risk until the update is applied. [2, 3]

Compliance Impact

The provided resources do not specify how this reflected XSS vulnerability in MailEnable affects compliance with common standards and regulations such as GDPR or HIPAA.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-34406. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart