CVE-2025-10368 | MiczFlor RPi-Jukebox-RFID up to 2.8.0 manageFilesFolders.php cross site scripting

Inserito da Angelo Barbosa | Set 12, 2025 | CVE

A vulnerability marked as problematic has been reported in MiczFlor RPi-Jukebox-RFID up to 2.8.0. Affected by this issue is some unknown functionality of the file /htdocs/manageFilesFolders.php. Performing manipulation results in cross site scripting.

This vulnerability is known as CVE-2025-10368. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-10368 | MiczFlor RPi-Jukebox-RFID up to 2.8.0 manageFilesFolders.php cross site scripting

Post correlati

CVE-2024-11206 | Tecno com.transsion.phoenix prior 15.6.0.5020 User Information privileges management

CVE-2025-37106 | HPE AutoPass License Server up to 9.17 improper authentication (EUVD-2025-21733)

CVE-2024-39810 | Mattermost up to 9.5.7/9.10.0/9.11.0 ElasticSearch Configuration /dev/zero CA path resource consumption

CVE-2023-51712 | Trusted Firmware-M up to 2.0.0 Login information disclosure