CVE-2025-56236 | FormCms 0.5.5 Avatar Upload cross site scripting (Issue 27)

Inserito da Angelo Barbosa | Ago 28, 2025 | CVE

A vulnerability was found in FormCms 0.5.5. It has been classified as problematic. This impacts an unknown function of the component Avatar Upload Handler. This manipulation causes cross site scripting.

This vulnerability is handled as CVE-2025-56236. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-56236 | FormCms 0.5.5 Avatar Upload cross site scripting (Issue 27)

Post correlati

CVE-2024-1097 | craigk5n webcalendar up to 1.3.0 Report Name cross site scripting

CVE-2024-49634 | Rimon Habib BP Member Type Manager Plugin up to 1.01 on WordPress cross site scripting

CVE-2024-3533 | Campcodes Complete Online Student Management System 1.0 academic_year_view.php FirstRecord cross site scripting

CVE-2024-23271 | Apple macOS Website cross-domain policy