Hacker Newsnew | past | comments | ask | show | jobs | submitlogin
Critical (CVSS 10) tagged CVE-2025-52691 affecting SmarterMail software (github.com/rxerium)
1 point by runtimepanic 3 months ago | hide | past | favorite | 1 comment


SmarterMail Build 9406 and earlier is vulnerable to arbitrary file upload. An unauthenticated attacker can upload arbitrary files to any location on the mail server, potentially enabling remote code execution.




Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: