CVE-2025-2085 | StarSea99 starsea-mall 1.0 /admin/carousels/save redirectUrl cross site scripting

Inserito da Angelo Barbosa | Mar 7, 2025 | CVE

A vulnerability classified as problematic has been found in StarSea99 starsea-mall 1.0. This affects an unknown part of the file /admin/carousels/save. The manipulation of the argument redirectUrl leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-2085. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-2085 | StarSea99 starsea-mall 1.0 /admin/carousels/save redirectUrl cross site scripting

Post correlati

CVE-2024-32517 | WooCommerce & WordPress Tutorials Custom Thank You Page Customize for WooCommerce by Binary Carpenter Plugin authorization

CVE-2024-42183 | HCL BigFix Patch Management Download Plug-ins up to 1177 code download (KB0118565)

CVE-2024-7085 | OpenText Solutions Business Manager up to 12.2.1 cross site scripting

CVE-2024-13370 | Youzify Plugin up to 1.3.2 on WordPress save_addon_key_license authorization