CVE-2025-10330

CVE-2025-10330 targets the Unmark (cdevroe) open-source to-do app. A cross-site scripting vulnerability arises from lack of input filtering/escaping in the parameter q of the file application/views/layouts/topbar/searchform.php, affecting Unmark versions up to 1.9.3. Remote exploitation is possib...

[MajorSecurity #14]CFXe-CMS <= 2.0 - XSS

MajorSecurity 14CFXe-CMS = 2.0 - XSS ---------------------------------------------- Software: CFXe-CMS Version: =2.0 Type: Cross site scripting Date: June, 10th 2006 Vendor: Creanet Internet Service AG Page: http://www.cms-cfx.ch Credits: ---------------------------- Discovered by: David...