CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-2150

The C&Cm@il from HGiga has a Stored Cross-Site Scripting (XSS) vulnerability, allowing remote attackers with regular privileges to send emails containing malicious JavaScript code, which will be executed in the recipient's browser when they view the email.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.6%

CVSS Severity

CVSS v3 Score 5.4

References

https://www.twcert.org.tw/en/cp-139-10005-05e0f-2.html
https://www.twcert.org.tw/tw/cp-132-10004-99474-1.html

Products affected by CVE-2025-2150

Hgiga » C&cm@il » Version: N/A

cpe:2.3:a:hgiga:c&cm@il:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-2150

Products

Pricing

Contact Us