https://blog.qife122.com/tags/%E6%BC%8F%E6%B4%9E%E6%A3%80%E6%B5%8B%E7%BD%91%E7%BB%9C%E5%AE%89%E5%85%A8smartermailnuclei/ Recent content in 漏洞检测，网络安全，SmarterMail，Nuclei on 办公AI智能小助手 Hugo zh-cn qife Sat, 10 Jan 2026 15:28:43 +0800 https://blog.qife122.com/p/cve-2025-52691%E6%BC%8F%E6%B4%9E%E6%A3%80%E6%B5%8B%E6%8A%80%E6%9C%AF%E8%AF%A6%E8%A7%A3/ Sat, 10 Jan 2026 15:28:43 +0800 https://blog.qife122.com/p/cve-2025-52691%E6%BC%8F%E6%B4%9E%E6%A3%80%E6%B5%8B%E6%8A%80%E6%9C%AF%E8%AF%A6%E8%A7%A3/ <h1 id="detection-for-cve-2025-52691">Detection for CVE-2025-52691</h1> <p>SmarterMail Build 9406 and earlier is vulnerable to arbitrary file upload. An unauthenticated attacker can upload arbitrary files to any location on the mail server, potentially enabling remote code execution.</p> <h2 id="how-does-this-detection-method-work">How does this detection method work?</h2> <p>Sends a GET request to <code>/interface/root#/login</code>, confirms SmarterMail is present via the <code>ng-app=&quot;smartermail&quot;</code> directive, extracts the version and build number from the <code>stProductVersion</code> JavaScript variable, and flags instances as vulnerable if the build number is less than or equal to 9406 as per csa.gov.sg&rsquo;s alert:</p>