VYPR

Active! Mail 6

by Qualitia Co., Ltd.

CVEs (3)

  • CVE-2025-52462MedJul 2, 2025
    risk 0.40cvss 6.1epss 0.00

    Cross-site scripting vulnerability exists in Active! mail 6 BuildInfo: 6.30.01004145 to 6.60.06008562. If this vulnerability is exploited, an arbitrary script may be executed on the logged-in user's web browser when the user is accessing a specially crafted URL.

  • CVE-2025-52463LowJul 2, 2025
    risk 0.20cvss 3.1epss 0.00

    Cross-site request forgery vulnerability exists in Active! mail 6 BuildInfo: 6.60.06008562 and earlier. If this vulnerability is exploited, unintended E-mail may be sent when a user accesses a specially crafted URL while being logged in.

  • CVE-2025-42599KEVApr 18, 2025
    risk 0.13cvss epss 0.03

    Active! mail 6 BuildInfo: 6.60.05008561 and earlier contains a stack-based buffer overflow vulnerability. Receiving a specially crafted request created and sent by a remote unauthenticated attacker may lead to arbitrary code execution and/or a denial-of-service (DoS) condition.