CVE-2025-7803 | descreekert wx-discuz up to 12bd4745c63ec203cb32119bf77ead4a923bf277 /wx.php validToken echostr cross site scripting

A vulnerability was found in descreekert wx-discuz up to 12bd4745c63ec203cb32119bf77ead4a923bf277. It has been classified as problematic. This affects the function validToken of the file /wx.php. The manipulation of the argument echostr leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-7803. It is possible to initiate the attack remotely. There is no exploit available.

This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available.

CVE-2025-7803 | descreekert wx-discuz up to 12bd4745c63ec203cb32119bf77ead4a923bf277 /wx.php validToken echostr cross site scripting

Post correlati

CVE-2024-30708 | ROS2 Dashing Diademata Node denial of service

CVE-2024-3525 | Campcodes Online Event Management System 1.0 /views/index.php msg cross site scripting

CVE-2024-9852 | Mitsubishi Electric GENESIS64/MC Works64 DLL uncontrolled search path

CVE-2024-10473 | Logo Slider Plugin up to 4.4.x on WordPress Setting cross site scripting