CVE-2025-2085
StarSea99 StarSeaMall 1.0 is affected by a cross-site scripting (XSS) vulnerability in the /admin/carousels/save path. The root cause is manipulation of the redirectUrl parameter, enabling remote initiation of an attack, with public exploit disclosure. No remediation details are provided in the c...