CVE-2025-71177 | LavaLite CMS up to 10.1.0 cross site scripting (Issue 420)

Inserito da Angelo Barbosa | Gen 23, 2026 | CVE

A vulnerability labeled as problematic has been found in LavaLite CMS up to 10.1.0. This affects an unknown function. The manipulation results in cross site scripting.

This vulnerability is reported as CVE-2025-71177. The attack can be launched remotely. No exploit exists.

CVE-2025-71177 | LavaLite CMS up to 10.1.0 cross site scripting (Issue 420)

Post correlati

CVE-2024-0691 | FileBird Plugin up to 5.6.0 on WordPress Folder Import cross site scripting

CVE-2023-47166 | Milesight UR32L 32.3.0.7-r2 luci2-io improper authorization (TALOS-2023-1852)

CVE-2024-2237 | Premium Addons Pro Plugin up to 2.9.12 on WordPress Global Badge Module cross site scripting

CVE-2024-9786 | D-Link DIR-619L B1 2.06 /goform/formSetLog curTime buffer overflow