4 matches found
CVE-2025-25990
Cross Site Scripting vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive information via the /install/index.php component...
CVE-2025-25990
CVE-2025-25990 affects HooskCms v1.7.1. A placeholder/XSS vulnerability in the /install/index.php component allows a remote attacker to obtain sensitive information. The issue is confirmed across multiple sources; no patch version is specified in the provided documents. Remediation guidance found...
CVE-2025-25988
Cross Site Scripting vulnerability in hooskcms v.1.8 allows a remote attacker to cause a denial of service via the custom Link title parameter and the Title parameter...
CVE-2025-25991
SQL Injection vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive information via the /install/index.php component...