Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

MailEssentials AI — Vulnerabilities & Security Advisories 18

All 18 CVE vulnerabilities found in MailEssentials AI, with AI-generated Chinese analysis, references, and POCs.

This page provides a comprehensive overview of security vulnerabilities associated with the MailEssentials AI product, categorized by vendor advisories and Common Weakness Enumeration classifications. It aggregates data from major vulnerability databases to offer a centralized view of known security issues affecting this specific email security solution. The content covers a wide spectrum of weaknesses, ranging from cross-site scripting and SQL injection to privilege escalation and information disclosure vulnerabilities. The collected data spans from the early days of the product’s initial releases up to the present moment, ensuring that both historical and recent security incidents are accounted for. By accessing this resource, users can efficiently track a vendor’s advisory history to understand how quickly patches are deployed for critical flaws. Researchers and security administrators can also analyze trends within specific weakness classes to anticipate potential attack vectors and improve their defensive strategies. Furthermore, the page allows for a detailed lookup of a product’s complete vulnerability history, providing context on severity levels, affected versions, and patch availability. This holistic approach helps stakeholders make informed decisions about risk management and software maintenance. The aggregation ensures that all publicly disclosed details are available in one place, facilitating better compliance monitoring and threat intelligence gathering for organizations relying on MailEssentials AI for their email infrastructure security needs.

Vendor: GFI Software

CVE IDTitleCVSSSeverityPublished
CVE-2026-23621 GFI MailEssentials AI < 22.4 ListServer.IsPathExist() Absolute Directory Traversal to File Enumeration CWE-203 4.3 Medium2026-02-19
CVE-2026-23620 GFI MailEssentials AI < 22.4 ListServer.IsDBExist() Absolute Directory Traversal to File Enumeration CWE-203 4.3 Medium2026-02-19
CVE-2026-23619 GFI MailEssentials AI < 22.4 General Settings Local Domains Domain Description Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23618 GFI MailEssentials AI < 22.4 Anti-Spam Spam Keyword Checking Subject Condition Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23617 GFI MailEssentials AI < 22.4 Anti-Spam Spam Keyword Checking Body Condition Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23616 GFI MailEssentials AI < 22.4 Anti-Spam Anti-Spoofing Description Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23615 GFI MailEssentials AI < 22.4 Anti-Spam Sender Policy Framework Email Exceptions Description Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23614 GFI MailEssentials AI < 22.4 Anti-Spam Sender Policy Framework IP Exceptions Description Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23613 GFI MailEssentials AI < 22.4 Anti-Spam URI DNS Blocklist Domain Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23612 GFI MailEssentials AI < 22.4 Anti-Spam IP DNS Blocklist Domain Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23611 GFI MailEssentials AI < 22.4 Anti-Spam IP Blocklist Description Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23610 GFI MailEssentials AI < 22.4 POP2Exchange POP3 Server Login Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23609 GFI MailEssentials AI < 22.4 General Settings Perimeter SMTP Servers Description Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23608 GFI MailEssentials AI < 22.4 Email Management Mail Monitoring Rule Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23607 GFI MailEssentials AI < 22.4 Anti-Spam Whitelist Description Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23606 GFI MailEssentials AI < 22.4 Advanced Content Filtering Rule Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23605 GFI MailEssentials AI < 22.4 Attachment Filtering Rule Stored XSS CWE-79 5.4 Medium2026-02-19
CVE-2026-23604 GFI MailEssentials AI < 22.4 Keyword Filtering Rule Stored XSS CWE-79 5.4 Medium2026-02-19

All 18 known CVE vulnerabilities affecting MailEssentials AI with full Chinese analysis, references, and POCs where available.