CVE-2025-2086 | StarSea99 starsea-mall 1.0 update redirectUrl cross site scripting

Inserito da Angelo Barbosa | Mar 7, 2025 | CVE

A vulnerability classified as problematic was found in StarSea99 starsea-mall 1.0. This vulnerability affects unknown code of the file /admin/indexConfigs/update. The manipulation of the argument redirectUrl leads to cross site scripting.

This vulnerability was named CVE-2025-2086. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-2086 | StarSea99 starsea-mall 1.0 update redirectUrl cross site scripting

Post correlati

CVE-2024-10851 | Razorpay Payment Button Plugin up to 2.4.6 on WordPress cross site scripting

CVE-2024-57638 | openlink virtuoso-opensource 7.2.11 SQL dfe_body_copy denial of service (Issue 1190)

CVE-2023-48650 | Concrete CMS up to 8.5.13/9.2.2 Layout Preset Name cross site scripting

CVE-2024-6393 | Photo Gallery, Sliders, Proofing Plugin up to 3.59.4 on WordPress Setting cross site scripting