CVE-2025-41045 | appRain CMF 4.0.5 ethical data[sconfig][ethical_licensekey] cross site scripting

Inserito da Angelo Barbosa | Set 4, 2025 | CVE

A vulnerability was found in appRain CMF 4.0.5. It has been classified as problematic. Affected by this vulnerability is an unknown functionality of the file /apprain/admin/config/ethical. Performing manipulation of the argument data[sconfig][ethical_licensekey] results in cross site scripting.

This vulnerability is cataloged as CVE-2025-41045. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-41045 | appRain CMF 4.0.5 ethical data[sconfig][ethical_licensekey] cross site scripting

Post correlati

CVE-2023-49923 | Elastic Enterprise Search up to 7.17.15/8.11.1 Documents API log file

CVE-2024-47221 | Rapid SCADA up to 5.8.4 MainLogic.cs CheckUser password weak password

CVE-2024-27508 | Atheme 7.2.12 main.c memory leak

CVE-2025-7427 | Arm Development Studio prior 2025 uncontrolled search path