CVE-2025-11278 | AllStarLink Supermon up to 6.2 AllMon2 cross site scripting

A vulnerability classified as problematic has been found in AllStarLink Supermon up to 6.2. This vulnerability affects unknown code of the component AllMon2. The manipulation leads to cross site scripting. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is documented as CVE-2025-11278. The attack can be initiated remotely. Additionally, an exploit exists.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-11278 | AllStarLink Supermon up to 6.2 AllMon2 cross site scripting

Post correlati

CVE-2025-26528 | Moodle up to 4.1.15/4.3.9/4.4.5/4.5.1 Question Type cross site scripting

CVE-2024-2121 | Elementor Website Builder Pro Plugin up to 3.20.1 on WordPress cross site scripting

CVE-2024-1786 | D-Link DIR-600M C1 3.08 Telnet Service username buffer overflow

CVE-2022-48220 | HP Desktop PC HP TamperLock Local Privilege Escalation