cbcvebase.
CVE-2006-6964
published 2007-01-29

CVE-2006-6964: MailEnable Professional before 1.78 provides a cleartext user password when an administrator edits the user's settings, which allows remote authenticated…

PriorityP412medium4CVSS 2.0
AVNACLAuSCPINAN
EPSS
0.96%
57.0th percentile
MailEnable Professional before 1.78 provides a cleartext user password when an administrator edits the user's settings, which allows remote authenticated administrators to obtain sensitive information by viewing the HTML source.

Affected

8 ranges
VendorProductVersion rangeFixed in
mailenablemailenable_professional
mailenablemailenable_professional
mailenablemailenable_professional
mailenablemailenable_professional
mailenablemailenable_professional
mailenablemailenable_professional
mailenablemailenable_professional
mailenablemailenable_professional
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.