CNNVD-202602-815 Information
CNNVD ID
CNNVD-202602-815
Related CVE
- CNNVD Published: 2026-02-05
Description (Chinese)
Axigen Mail Server是Axigen公司的一款邮件服务器软件。 Axigen Mail Server 10.5.57之前版本存在安全漏洞,该漏洞源于WebAdmin界面存在多处存储型跨站脚本,攻击者可在管理员访问受影响页面时注入并执行恶意JavaScript有效载荷,可能导致权限提升。
Description (English)
Axigen Mail Server is a mail server software for Axigen. The previous version of Axigen Mail Server 10.5.57 had a security loophole, which stemmed from the existence of multiple storage-type cross-site scripts in the WebAdmin interface, where the assailant could inject and execute a malicious JavaScript payload when the administrator visited the affected page, which could lead to increased access.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Axigen
Published
2026-02-05
Last Modified
2026-02-24
References
https://www.axigen.com/knowledgebase/Axigen-WebAdmin-Stored-XSS-Vulnerabilities-CVE-2025-68723-_408.html https://www.axigen.com/mail-server/download/
Patch
https://www.axigen.com/mail-server/download/
Share on: