CVE-2025-41357 | Anon Proxy Server 0.104 URL /diagdns.php host cross site scripting

Inserito da Angelo Barbosa | Mar 31, 2026 | CVE

A vulnerability described as problematic has been identified in Anon Proxy Server 0.104. The affected element is an unknown function of the file /diagdns.php of the component URL Handler. Such manipulation of the argument host leads to cross site scripting.

This vulnerability is listed as CVE-2025-41357. The attack may be performed from remote. There is no available exploit.

CVE-2025-41357 | Anon Proxy Server 0.104 URL /diagdns.php host cross site scripting

Post correlati

CVE-2024-29514 | Lepton 7.1.0 PHP File unrestricted upload

CVE-2024-29672 | zly2006 Reden prior 0.2.514 KeyCallbacks.kt DEBUG_RTC_REQUEST_SYNC_DATA path traversal

CVE-2025-1259 | Arista EOS up to 4.33.1 OpenConfig access control

CVE-2026-2080 | UTT HiPER 810 1.7.4-141218 /goform/formUser setSysAdm passwd1 command injection