Active! Mail RCE flaw exploited in attacks on Japanese orgs

April 22, 2025

Active! Mail RCE flaw exploited in attacks on Japanese orgs

An Active! Mail zero-day remote code execution vulnerability is actively exploited in attacks on large organizations in Japan.
Active! mail is a web-based email client developed initially by TransWARE …

Published Date:
Apr 22, 2025 (4 hours, 36 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-42599

Source: Read More

Previous Article“ConfusedComposer”: GCP Composer Vulnerability Allows Privilege Escalation

Next Article NethSecurity is a Linux firewall based on OpenWrt, a distribution

Highlights

CVE-2025-48485 – FreeScout Cross-Site Scripting Vulnerability

May 30, 2025

CVE ID : CVE-2025-48485

Published : May 30, 2025, 7:15 a.m. | 2 hours, 21 minutes ago

Description : FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the application is vulnerable to Cross-Site Scripting (XSS) attacks due to incorrect input validation and sanitization of user-input data when an authenticated user updates the profile of an arbitrary customer. This issue has been patched in version 1.8.180.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Tenable updates Vulnerability Priority Rating scoring method to flag fewer vulnerabilities as critical

Google adds updated workspace templates in Firebase Studio that leverage new Agent mode

AI and its impact on the developer experience, or ‘where is the joy?’

Google launches OSS Rebuild tool to improve trust in open source packages

EcoFlow’s new portable battery stations are lighter and more powerful (DC plug included)

7 ways Linux can save you money

My favorite Kindle tablet just got a kids model, and it makes so much sense

You can turn your Google Photos into video clips now – here’s how

Blade Service Injection: Direct Service Access in Laravel Templates

Blade Service Injection: Direct Service Access in Laravel Templates

This Week in Laravel: NativePHP Mobile and AI Guidelines from Spatie

Retrieve the Currently Executing Closure in PHP 8.5

FOSS Weekly #25.30: AUR Poisoned, Linux Rising, PPA Explained, New Open Source Grammar Checker and More

FOSS Weekly #25.30: AUR Poisoned, Linux Rising, PPA Explained, New Open Source Grammar Checker and More

How to Open Control Panel in Windows 11

How to Shut Down Windows 11

Active! Mail RCE flaw exploited in attacks on Japanese orgs

Active! Mail RCE flaw exploited in attacks on Japanese orgs

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Hackers Deploy Stealth Backdoor in WordPress Mu-Plugins to Maintain Admin Access

4M+ Internet-Exposed Systems at Risk From Tunneling Protocol Vulnerabilities

CodeSOD: Objectifying Yourself

CVE-2025-6216 – Allegra Password Recovery Authentication Bypass Vulnerability

Critical OpenVPN Driver Vulnerability Allows Attackers to Crash Windows Systems

CVE-2025-48485 – FreeScout Cross-Site Scripting Vulnerability

How to Turn On Bluetooth on Windows 10

CVE-2025-30420 – NI Circuit Design Suite Bitmap Out-of-Bounds Read Memory Corruption Vulnerability

CVE-2025-6659 – PDF-XChange Editor PRC File Parsing Remote Code Execution Vulnerability

Active! Mail RCE flaw exploited in attacks on Japanese orgs

Active! Mail RCE flaw exploited in attacks on Japanese orgs

Related Posts