Lucene search
+L

7 matches found

Nuclei
Nuclei
added 14 hours ago61 views

MagnusBilling Login Logs - Cross-Site Scripting

Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling login logging allows unauthenticated users to store HTML content in the viewable log component accessible at /mbilling/index.php/logUsers/read" cross-site scripting This vulnerability is...

8.2CVSS4.8AI score0.01089EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/03/23 11:14 p.m.15 views

CVE-2025-2609

Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling login logging allows unauthenticated users to store HTML content in the viewable log component accessible at /mbilling/index.php/logUsers/read" cross-site scripting This vulnerability is...

8.2CVSS6.2AI score0.01089EPSS
Exploits1References1
Circl
Circl
added 2025/03/21 11:19 p.m.5 views

CVE-2025-2609

creationtimestamp| type| source ---|---|--- 2025-03-21 23:19:59+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8457 2025-03-22 00:48:22+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114203328650631535 2025-03-22 02:00:36+00:00| seen|...

8.2CVSS5.3AI score0.01089EPSS
Exploits1References6
NVD
NVD
added 2025/03/21 11:15 p.m.11 views

CVE-2025-2609

Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling login logging allows unauthenticated users to store HTML content in the viewable log component accessible at /mbilling/index.php/logUsers/read" cross-site scripting This vulnerability is...

8.2CVSS0.01089EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/03/21 10:41 p.m.6 views

CVE-2025-2609 MagnusBilling Stored Cross-Site Scripting in Login Logs

Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling login logging allows unauthenticated users to store HTML content in the viewable log component accessible at /mbilling/index.php/logUsers/read" cross-site scripting This vulnerability is...

8.2CVSS6.4AI score0.01089EPSS
Exploits1References3
CVE
CVE
added 2025/03/21 10:41 p.m.96 views

CVE-2025-2609

CVE-2025-2609 affects MagnusBilling up to version 7.3.0. Affected component: MagnusLog.Php in the login logging, where improper input neutralization during web page generation allows unauthenticated users to store HTML content in the viewable log at /mbilling/index.php/logUsers/read, enabling cro...

8.2CVSS6.3AI score0.01089EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2025/03/21 10:41 p.m.8 views

CVE-2025-2609 MagnusBilling Stored Cross-Site Scripting in Login Logs

Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling login logging allows unauthenticated users to store HTML content in the viewable log component accessible at /mbilling/index.php/logUsers/read" cross-site scripting This vulnerability is...

8.2CVSS5.8AI score0.01089EPSS
Exploits1References6
Rows per page
Query Builder