CVE-2025-14538 | yangshare warehouseManager 仓库管理系统 1.1.0 CustomerManageHandler.java addCustomer Name cross site scripting (ID9NAU)

Inserito da Angelo Barbosa | Dic 11, 2025 | CVE

A vulnerability, which was classified as problematic, was found in yangshare warehouseManager 仓库管理系统 1.1.0. This affects the function addCustomer of the file CustomerManageHandler.java. Such manipulation of the argument Name leads to cross site scripting.

This vulnerability is documented as CVE-2025-14538. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2025-14538 | yangshare warehouseManager 仓库管理系统 1.1.0 CustomerManageHandler.java addCustomer Name cross site scripting (ID9NAU)

Post correlati

CVE-2024-12595 | AHAthat Plugin up to 1.6 on WordPress REQUEST_URI cross site scripting

CVE-2024-45674 | IBM Security Verify Bridge Directory Sync log file

CVE-2025-10099 | Portabilis i-Educar up to 2.10 Editar usuário Page educar_usuario_cad.php email/data_inicial/data_expiracao cross site scripting

CVE-2024-36515 | Zoho ManageEngine ADAudit Plus up to 7999 Dashboard sql injection