CVE-2025-40647 | Issabel 5.0.0 index.php?menu=address_book email cross site scripting

Inserito da Angelo Barbosa | Ott 1, 2025 | CVE

A vulnerability was found in Issabel 5.0.0. It has been classified as problematic. Impacted is an unknown function of the file /index.php?menu=address_book. The manipulation of the argument email leads to cross site scripting.

This vulnerability is traded as CVE-2025-40647. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2025-40647 | Issabel 5.0.0 index.php?menu=address_book email cross site scripting

Post correlati

CVE-2024-10589 | nouthemes Leopard Plugin up to 3.1.1 on WordPress import_settings authorization

CVE-2023-44297 | Dell PowerEdge BIOS 1.4.4 unknown vulnerability (dsa-2023-429)

CVE-2025-10434 | IbuyuCMS up to 2.6.3 Add Article Page /admin/article.php?a=mod Title cross site scripting

CVE-2023-43547 | Qualcomm Snapdragon Automotive Multimedia memory corruption