CVE-2025-27584 | Serosoft Academia Student Information System EagleR 1.0.118 update First Name cross site scripting

Inserito da Angelo Barbosa | Mar 3, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in Serosoft Academia Student Information System EagleR 1.0.118. This issue affects some unknown processing of the file /rest/staffResource/update. The manipulation of the argument First Name leads to cross site scripting.

The identification of this vulnerability is CVE-2025-27584. The attack may be initiated remotely. There is no exploit available.

CVE-2025-27584 | Serosoft Academia Student Information System EagleR 1.0.118 update First Name cross site scripting

Post correlati

CVE-2024-12624 | shaonsina Sina Extension for Elementor Plugin up to 3.5.91 on WordPress cross site scripting

CVE-2024-57519 | Open5GS 2.7.2 Subscription lib/dbi/subscription.c ogs_dbi_auth_info denial of service (Issue 3635)

CVE-2024-5174 | Gliffy Online up to 4.14.0-6 reset improper authentication

CVE-2024-20255 | Cisco TelePresence Video Communication Server Expressway SOAP API cross-site request forgery (cisco-sa-expressway-csrf-KnnZDMj3)