CVE-2025-9823 | Mautic up to 4.4.16/5.2.7/6.0.4 ajax?action=lead:addLeadTags cross site scripting

Inserito da Angelo Barbosa | Set 3, 2025 | CVE

A vulnerability classified as problematic has been found in Mautic up to 4.4.16/5.2.7/6.0.4. The affected element is an unknown function of the file /s/ajax?action=lead:addLeadTags. This manipulation causes cross site scripting.

This vulnerability is registered as CVE-2025-9823. Remote exploitation of the attack is possible. No exploit is available.

It is recommended to upgrade the affected component.

CVE-2025-9823 | Mautic up to 4.4.16/5.2.7/6.0.4 ajax?action=lead:addLeadTags cross site scripting

Post correlati

CVE-2024-2047 | ElementsKit Elementor Addons Plugin up to 3.0.6 on WordPress render_raw file inclusion

CVE-2024-10142 | code-projects Blood Bank System 1.0 /viewrequest.php cross site scripting

CVE-2021-30299 | Qualcomm Snapdragon Auto up to WSA8835 Audio Module input validation

CVE-2024-4295 | Icegram Express Email Subscribers Plugin up to 5.7.20 on WordPress hash sql injection