3 matches found
CVE-2025-40727
A Reflected Cross Site Scripting XSS vulnerability was found in '/search' in Phoenix Site CMS from Phoenix, which allows remote attackers to execute arbitrary code via 's' GET parameter...
CVE-2025-40727
Consolidated findings for CVE-2025-40727: The Phoenix Site CMS contains a Reflected XSS vulnerability in the /search endpoint, exploitable via the s GET parameter. The root cause is reflected input being echoed unsafely, enabling remote attackers to execute arbitrary code in the context of the af...
CVE-2025-40727 Reflected Cross-Site Scripting (XSS) in Phoenix CMS
A Reflected Cross Site Scripting XSS vulnerability was found in '/search' in Phoenix Site CMS from Phoenix, which allows remote attackers to execute arbitrary code via 's' GET parameter...