CVE-2025-25990 | hooskcms 1.7.1 /install/index.php cross site scripting

Inserito da Angelo Barbosa | Feb 14, 2025 | CVE

A vulnerability classified as problematic has been found in hooskcms 1.7.1. Affected is an unknown function of the file /install/index.php. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-25990. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-25990 | hooskcms 1.7.1 /install/index.php cross site scripting

Post correlati

CVE-2025-25064 | Zimbra Collaboration Suite up to 10.0.11/10.1.3 ZimbraSyncService SOAP Endpoint sql injection

CVE-2024-44191 | Apple visionOS Bluetooth improper authorization

CVE-2024-38358 | wasmer up to 4.3.1 oflags::creat path traversal (GHSA-55f3-3qvg-8pv5)

CVE-2024-1171 | wpdevteam Essential Addons for Elementor Plugin up to 5.9.8 on WordPress Filterable Gallery Widget cross site scripting