3 matches found
CVE-2025-45388
creationtimestamp| type| source ---|---|--- 2025-05-07 19:22:18+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15384 2025-05-07 22:27:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lomgxujgzs2p 2025-05-07 23:12:15+00:00| seen|...
CVE-2025-45388
Wagtail CMS 6.4.1 is vulnerable to a Stored Cross-Site Scripting XSS in the document upload functionality. Attackers can inject malicious code inside a PDF file. When a user clicks the document in the CMS interface, the payload executes. NOTE: this is disputed by the Supplier because "It has been...
CVE-2025-45388
Wagtail CMS 6.4.1 is vulnerable to a Stored Cross-Site Scripting XSS in the document upload functionality. Attackers can inject malicious code inside a PDF file. When a user clicks the document in the CMS interface, the payload executes. NOTE: this is disputed by the Supplier because "It has been...