CVE-2025-51504 | Microweber CMS 2.0 /projects/profile last name cross site scripting

Inserito da Angelo Barbosa | Ago 1, 2025 | CVE

A vulnerability has been found in Microweber CMS 2.0 and classified as problematic. This vulnerability affects unknown code of the file /projects/profile. The manipulation of the argument last name leads to cross site scripting.

This vulnerability was named CVE-2025-51504. The attack can be initiated remotely. There is no exploit available.

CVE-2025-51504 | Microweber CMS 2.0 /projects/profile last name cross site scripting

Post correlati

CVE-2023-51035 | Totolink EX1200L 9.3.5u.6146 cstecgi.cgi NTPSyncWithHost Privilege Escalation

CVE-2024-45755 | Centreon centreon-dsm-server up to 22.10.1/23.04.2/23.10.0/24.04.2 Slot sql injection

CVE-2023-49240 | Huawei HarmonyOS/EMUI Launcher redirect

CVE-2024-32756 | Johnson Controls Illustra Essentials Gen 4 up to 4.01.02.10.5982 storing passwords in a recoverable format (icsa-24-179-05)