Exploitation Summary
EIP tracks 1 public exploit for CVE-2017-8928. PoCs published by hyp3rlinx.
AI-analyzed exploit summary This exploit demonstrates CSRF vulnerabilities in mailcow 0.14, allowing attackers to reset admin passwords, add arbitrary admins, or delete domains via crafted HTML forms. The PoC includes detailed steps and form submissions to exploit these flaws.
Description
mailcow 0.14, as used in "mailcow: dockerized" and other products, has CSRF.
Exploits (1)
exploitdb
WORKING POC
by hyp3rlinx · textwebappsphp
https://www.exploit-db.com/exploits/42004
This exploit demonstrates CSRF vulnerabilities in mailcow 0.14, allowing attackers to reset admin passwords, add arbitrary admins, or delete domains via crafted HTML forms. The PoC includes detailed steps and form submissions to exploit these flaws.
Classification
Working Poc 100%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target:
mailcow 0.14
No auth needed
Prerequisites:
Victim must be authenticated in mailcow and visit a malicious webpage
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (2)
Core 2
Core References
Exploit, Third Party Advisory, VDB Entry exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/42004/
Issue Tracking, Patch x_refsource_confirm
https://github.com/mailcow/mailcow-dockerized/pull/268/commits/3c937f75ba5853ada175542d5c4849fb95eb64cd
Scores
CVSS v3
8.8
EPSS
0.0205
EPSS Percentile
78.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-352
Status
published
Products (1)
mailcow/mailcow\
_dockerized 0.14
Published
May 14, 2017
Tracked Since
Feb 18, 2026