CVE-2025-1213 | pihome-shc PiHome 1.77 /index.php $_SERVER[‘PHP_SELF’] cross site scripting

Posted by Angelo Barbosa | Feb 10, 2025 | CVE

A vulnerability was found in pihome-shc PiHome 1.77. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument $_SERVER[‘PHP_SELF’] leads to cross site scripting.

This vulnerability is handled as CVE-2025-1213. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2025-1213 | pihome-shc PiHome 1.77 /index.php $_SERVER[‘PHP_SELF’] cross site scripting

Related Posts

CVE-2024-37661 | TP-LINK TL-7DR5130 1.0.23 ICMP Redirect Message Remote Code Execution

CVE-2024-30459 | AIpost AI WP Writer Plugin up to 3.6.5 on WordPress authorization

CVE-2024-21816 | OpenHarmony up to 4.0.0 permissions

CVE-2024-21517 | OpenCart up to 4.0.0.0 redirect cross site scripting (SNYK-PHP-OPENCARTOPENCART-7266577)