Loading
Generated remediation guidance and an executive summary. No account required.
Cross-site scripting (XSS) vulnerability in ForgottenPassword.aspx in MailEnable Professional, Enterprise, and Premium 4.26 and earlier, 5.x before 5.53, and 6.x before 6.03 allows remote attackers to inject arbitrary web script or HTML via the Username parameter.
Use CWE-79, Mailenable vendor hub and Mailenable product page to widen CVE-2012-0389 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2025-34424, CVE-2025-34423 and CVE-2025-34422 for nearby disclosures in the same product family.