CVE-2025-15095 | postmanlabs httpbin up to 0.6.1 core.py cross site scripting (Issue 735)

Inserito da Angelo Barbosa | Dic 25, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in postmanlabs httpbin up to 0.6.1. This affects an unknown function of the file httpbin-master/httpbin/core.py. The manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2025-15095. The attack may be initiated remotely. In addition, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2025-15095 | postmanlabs httpbin up to 0.6.1 core.py cross site scripting (Issue 735)

Post correlati

CVE-2024-1649 | Categorify Plugin up to 1.0.7.4 on WordPress categorifyAjaxDeleteCategory authorization

CVE-2023-47183 | GiveWP Plugin up to 2.33.1 on WordPress authorization

CVE-2024-33602 | GNU C Library NSS Callback buffer overflow

CVE-2024-39350 | Synology Camera prior 1.0.7-0298 RTSP authentication spoofing (SA_23_15)