CVE-2025-40701 | Sote Soteshop 8.3.4 URL /adsTracker/checkAds ID cross site scripting

Inserito da Angelo Barbosa | Feb 23, 2026 | CVE

A vulnerability labeled as problematic has been found in Sote Soteshop 8.3.4. This impacts an unknown function of the file /adsTracker/checkAds of the component URL Handler. Such manipulation of the argument ID leads to cross site scripting.

This vulnerability is listed as CVE-2025-40701. The attack may be performed from remote. There is no available exploit.

CVE-2025-40701 | Sote Soteshop 8.3.4 URL /adsTracker/checkAds ID cross site scripting

Post correlati

CVE-2024-37146 | FlowiseAI Flowise up to 1.4.3 404 Page /api/v1/credentials/id cross site scripting (GHSL-2023-232)

CVE-2024-20337 | Cisco Secure Client up to 5.1.1.42 SAML Authentication crlf injection (cisco-sa-secure-client-crlf-W43V4G7)

CVE-2024-1089 | ImageRecycle PDF & Image Compression Plugin up to 3.1.13 on WordPress Setting optimizeAllOn authorization

CVE-2024-25389 | RT-Thread up to 5.0.2 drivers/misc/rt_random.c entropy (Issue 8283)