CVE-2025-60450 | MetInfo CMS 8.0 SVG File Uploader.class.php cross site scripting

Inserito da Angelo Barbosa | Ott 3, 2025 | CVE

A vulnerability classified as problematic was found in MetInfo CMS 8.0. This affects an unknown part of the file appsystemincludemoduleeditorUploader.class.php of the component SVG File Handler. Such manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2025-60450. It is possible to launch the attack remotely. No exploit is available.

CVE-2025-60450 | MetInfo CMS 8.0 SVG File Uploader.class.php cross site scripting

Post correlati

CVE-2025-11001 | 7-zip ZIP File Parser path traversal

CVE-2024-40402 | Sourcecodester Simple Library Management System 1.0 ajax.php username sql injection (Issue 49)

CVE-2024-5729 | Simple AL Slider Plugin up to 1.2.10 on WordPress cross site scripting

CVE-2024-31837 | DMitry 1.3a format string