CVE-2025-3821 – SourceCodester Web-based Pharmacy Product Management System Cross-Site Scripting Vulnerability

April 21, 2025

CVE ID : CVE-2025-3821

Published : April 20, 2025, 4:15 a.m. | 1 day, 2 hours ago

Description : A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file add-admin.php. The manipulation of the argument txtpassword/txtfullname/txtemail leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-0632 – Formulatrix Rock Maker Web Local File Inclusion Vulnerability

Next Article CVE-2025-29058 – Qimou CMS Remote Code Execution Vulnerability

Highlights

CVE-2025-53770 – Microsoft SharePoint Server Remote Code Execution Vulnerability

July 20, 2025

CVE ID : CVE-2025-53770

Published : July 20, 2025, 1:15 a.m. | 22 hours, 14 minutes ago

Description : Deserialization of untrusted data in on-premises Microsoft SharePoint Server allows an unauthorized attacker to execute code over a network.
Microsoft is aware that an exploit for CVE-2025-53770 exists in the wild.
Microsoft is preparing and fully testing a comprehensive update to address this vulnerability. In the meantime, please make sure that the mitigation provided in this CVE documentation is in place so that you are protected from exploitation.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

Handling JavaScript Event Listeners With Parameters

ChatGPT now has an agent mode

Scrum Alliance and Kanban University partner to offer new course that teaches both methodologies

Is ChatGPT down? You’re not alone. Here’s what OpenAI is saying

I found a tablet that could replace my iPad and Kindle – and it’s worth every penny

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

Execute Ping Commands and Get Back Structured Data in PHP

Execute Ping Commands and Get Back Structured Data in PHP

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

Microsoft confirms active cyberattacks on SharePoint servers

How to Manually Check & Install Windows 11 Updates (Best Guide)

CVE-2025-3821 – SourceCodester Web-based Pharmacy Product Management System Cross-Site Scripting Vulnerability

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

3,500 Websites Hijacked to Secretly Mine Crypto Using Stealth JavaScript and WebSocket Tactics

Solanum is a time tracking app

CVE-2025-5745 – IBM Power10 GNU C Library Unpredictable String Comparison Vulnerability

CVE-2025-5938 – Elementor Digital Marketing and Agency Templates CSRF

Introduction and Overview Microsoft 365 Admin Center

CVE-2025-53770 – Microsoft SharePoint Server Remote Code Execution Vulnerability

CVE-2025-6117 – Das Parking Management System SQL Injection Vulnerability

I’ve been using the Logitech MX Master 3S’ gaming-influenced alternative, and it could be your next mouse

CVE-2025-53311 – Navayan Subscribe CSRF Stored XSS

CVE-2025-3821 – SourceCodester Web-based Pharmacy Product Management System Cross-Site Scripting Vulnerability

Related Posts