CVE-2025-40734 | Daily Expense Manager 1.0 /register.php password/confirm_password cross site scripting

Inserito da Angelo Barbosa | Giu 30, 2025 | CVE

A vulnerability was found in Daily Expense Manager 1.0. It has been classified as problematic. Affected is an unknown function of the file /register.php. The manipulation of the argument password/confirm_password leads to cross site scripting.

This vulnerability is traded as CVE-2025-40734. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-40734 | Daily Expense Manager 1.0 /register.php password/confirm_password cross site scripting

Post correlati

CVE-2024-30973 | V-SOL G-EPON ONU HG323AC-B 2.0.08-210 POST Request formFirewall Privilege Escalation

CVE-2024-47546 | GStreamer up to 1.24.9 qtdemux.c extract_cc_from_data integer underflow (GHSL-2024-243)

CVE-2024-1737 | ISC BIND 9 up to 9.19.24 RR resource consumption

CVE-2024-0101 | NVIDIA Mellanox OS/ONYX/Skyway/MetroX-3 XC/MetroX-2 ipfilter Definition protection mechanism