CVE-2025-10366 MiczFlor RPi-Jukebox-RFID inc.setWlanIpMail.php cross site scripting

🗓️ 13 Sep 2025 13:32:06Reported by VulDBType

CVE 2025 10366: Cross site scripting in MiczFlor Jukebox RFID inc.setWlanIpMail.php enables remote abuse.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2025-10366	13 Sep 202516:57	–	circl
CNNVD	RPi-Jukebox-RFID 代码注入漏洞	13 Sep 202500:00	–	cnnvd
CVE	CVE-2025-10366	13 Sep 202513:32	–	cve
EUVD	EUVD-2025-29094	3 Oct 202520:07	–	euvd
NVD	CVE-2025-10366	13 Sep 202514:15	–	nvd
Positive Technologies	PT-2025-37372	13 Sep 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-10366	15 Sep 202514:31	–	redhatcve
Vulnrichment	CVE-2025-10366 MiczFlor RPi-Jukebox-RFID inc.setWlanIpMail.php cross site scripting	13 Sep 202513:32	–	vulnrichment

[
  {
    "vendor": "MiczFlor",
    "product": "RPi-Jukebox-RFID",
    "versions": [
      {
        "version": "2.0",
        "status": "affected"
      },
      {
        "version": "2.1",
        "status": "affected"
      },
      {
        "version": "2.2",
        "status": "affected"
      },
      {
        "version": "2.3",
        "status": "affected"
      },
      {
        "version": "2.4",
        "status": "affected"
      },
      {
        "version": "2.5",
        "status": "affected"
      },
      {
        "version": "2.6",
        "status": "affected"
      },
      {
        "version": "2.7",
        "status": "affected"
      },
      {
        "version": "2.8.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/YZS17/CVE/blob/main/RPi-Jukebox-RFID/xss1.md
github	www.github.com/YZS17/CVE/blob/main/RPi-Jukebox-RFID/xss1.md
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

13 Sep 2025 13:32Current

CVSS 3.13.5

CVSS 33.5

CVSS 24

CVSS 45.1

EPSS0.00048