CVE-2025-13648 | Microcom ZeusWeb 6.1.31 My Account Page Name/Surname cross site scripting

Inserito da Angelo Barbosa | Feb 11, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in Microcom ZeusWeb 6.1.31. The impacted element is an unknown function of the component My Account Page. This manipulation of the argument Name/Surname causes cross site scripting.

This vulnerability is handled as CVE-2025-13648. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-13648 | Microcom ZeusWeb 6.1.31 My Account Page Name/Surname cross site scripting

Post correlati

CVE-2022-48662 | Linux Kernel up to 5.15.71/5.19.11/6.0 context_close iteration (713fa3e4591f/f799e0568d6c/d119888b09bd)

CVE-2025-30990 | ThemeHunk Plugin up to 1.1.1 on WordPress authorization

CVE-2025-38056 | Linux Kernel up to 6.12.30/6.14.8 hda_generic_machine_select use after free

CVE-2023-53040 | Linux Kernel up to 6.2.8 ca8210 ieee802154_hdr_peek_addrs buffer overflow