CVE-2025-40648 | Issabel 5.0.0 index.php?menu=conferencia numero_conferencia cross site scripting

Inserito da Angelo Barbosa | Ott 1, 2025 | CVE

A vulnerability was found in Issabel 5.0.0. It has been declared as problematic. The affected element is an unknown function of the file /index.php?menu=conferencia. The manipulation of the argument numero_conferencia results in cross site scripting.

This vulnerability is known as CVE-2025-40648. It is possible to launch the attack remotely. No exploit is available.

It is recommended to upgrade the affected component.

CVE-2025-40648 | Issabel 5.0.0 index.php?menu=conferencia numero_conferencia cross site scripting

Post correlati

CVE-2023-30310 | Comfast CF-616AC TCP denial of service

CVE-2023-6610 | Linux Kernel fs/smb/client/smb2ops.c smb2_dump_detail out-of-bounds

CVE-2024-49619 | Acespritech Solutions Social Link Groups Plugin up to 1.1.0 on WordPress sql injection

CVE-2023-41678 | Fortinet FortiOS FortiPAM HTTPSd Daemon double free (FG-IR-23-196)