Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/06/04 12:14 a.m.8 views

CVE-2025-5420

A vulnerability classified as problematic was found in juzaweb CMS up to 3.4.2. Affected by this vulnerability is an unknown functionality of the file /admin-cp/file-manager/upload of the component Profile Page. The manipulation of the argument Upload leads to cross site scripting. The attack can...

5.4CVSS6AI score0.00278EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/06/02 12:0 a.m.4 views

CVE-2025-5420 juzaweb CMS Profile Page upload cross site scripting

A vulnerability classified as problematic was found in juzaweb CMS up to 3.4.2. Affected by this vulnerability is an unknown functionality of the file /admin-cp/file-manager/upload of the component Profile Page. The manipulation of the argument Upload leads to cross site scripting. The attack can...

5.1CVSS3.7AI score0.00278EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/06/02 12:0 a.m.20 views

CVE-2025-5420 juzaweb CMS Profile Page upload cross site scripting

A vulnerability classified as problematic was found in juzaweb CMS up to 3.4.2. Affected by this vulnerability is an unknown functionality of the file /admin-cp/file-manager/upload of the component Profile Page. The manipulation of the argument Upload leads to cross site scripting. The attack can...

5.1CVSS0.00278EPSS
Exploits1References4
CVE
CVE
added 2025/06/02 12:0 a.m.62 views

CVE-2025-5420

CVE-2025-5420 affects juzaweb CMS up to version 3.4.2. The vulnerability is an XSS in the Upload parameter of /admin-cp/file-manager/upload on the Profile Page due to improper input handling. It can be exploited remotely and the exploit has been disclosed publicly. Multiple sources confirm the is...

5.4CVSS6.1AI score0.00278EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder