CVE-2025-5013 | HkCms up to 2.3.2.240702 Search index.html keyword cross site scripting (IBZ2G7)

Inserito da Angelo Barbosa | Mag 20, 2025 | CVE

A vulnerability, which was classified as problematic, was found in HkCms up to 2.3.2.240702. This affects an unknown part of the file /index.php/search/index.html of the component Search. The manipulation of the argument keyword leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-5013. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-5013 | HkCms up to 2.3.2.240702 Search index.html keyword cross site scripting (IBZ2G7)

Post correlati

CVE-2024-3780 | Technicolor CGA2121 1.0.1 information disclosure

CVE-2023-39909 | Ericsson Network Manager up to 23.1 NCM Application access control

CVE-2025-24720 | Wow-Company Sticky Buttons Plugin up to 4.1.1 on WordPress cross-site request forgery

CVE-2024-34929 | Campcodes Complete Web-Based School Management System 1.0 /view/find_friends.php my_index sql injection