3 matches found
CVE-2025-40734
Reflected Cross-Site Scripting XSS vulnerability in Daily Expense Manager v1.0. This vulnerability allows an attacker to execute JavaScript code by sending a POST request through the password and confirmpassword parameters in /register.php...
CVE-2025-40734 Reflected Cross-Site Scripting (XSS) vulnerability in Daily Expense Manager
Reflected Cross-Site Scripting XSS vulnerability in Daily Expense Manager v1.0. This vulnerability allows an attacker to execute JavaScript code by sending a POST request through the password and confirmpassword parameters in /register.php...
CVE-2025-40734
Daily Expense Manager (version 1.0) is affected by a Reflected XSS flaw in /register.php, exploitable via POST parameters password and confirm_password. The root cause is insufficient input filtering/escaping of user-supplied data, enabling execution of injected JavaScript. Documented impact is a...