CVE-2025-46229 – Israpil Textmetrics Cross-site Scripting Vulnerability

April 22, 2025

CVE ID : CVE-2025-46229

Published : April 22, 2025, 10:15 a.m. | 58 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Israpil Textmetrics allows Stored XSS. This issue affects Textmetrics: from n/a through 3.6.2.

Severity: 5.9 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46231 – SERVIT Software Solutions Affiliate-Toolkit CSRF Vulnerability

Next Article CVE-2025-46228 – Bastien Ho Eventpost DOM-Based Cross-Site Scripting Vulnerability

Highlights

CVE-2025-28032 – TOTOLINK Router Pre-Auth Buffer Overflow Vulnerability

April 22, 2025

CVE ID : CVE-2025-28032

Published : April 22, 2025, 2:15 p.m. | 22 minutes ago

Description : TOTOLINK A800R V4.1.2cu.5137_B20200730, A810R V4.1.2cu.5182_B20201026, A830R V4.1.2cu.5182_B20201102, A950RG V4.1.2cu.5161_B20200903, A3000RU V5.9c.5185_B20201128, and A3100R V4.1.2cu.5247_B20211129 contain a pre-auth buffer overflow vulnerability in the setNoticeCfg function through the IpForm parameter.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

Handling JavaScript Event Listeners With Parameters

I finally gave NotebookLM my full attention – and it really is a total game changer

Google Chrome for iOS now lets you switch between personal and work accounts

How the Trump administration changed AI: A timeline

Download your photos before AT&T shuts down its cloud storage service permanently

Laravel Live Denmark

Laravel Live Denmark

The July 2025 Laravel Worldwide Meetup is Today

Livewire Security Vulnerability

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

Halo and Half-Life combine in wild new mod, bringing two of my favorite games together in one — here’s how to play, and how it works

Surprise! The iconic Roblox ‘oof’ sound is back — the beloved meme makes “a comeback so good it hurts” after three years of licensing issues

CVE-2025-46229 – Israpil Textmetrics Cross-site Scripting Vulnerability

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Hackers Exploit SharePoint Zero-Day Since July 7 to Steal Keys, Maintain Persistent Access

My mentoring philosophy

CVE-2025-4671 – WordPress Profile Builder Stored Cross-Site Scripting Vulnerability

Best AI Tools for Freelancers in 2025 Boost Productivity & Profits

Linux Crash Reporting Flaws (CVE-2025-5054, 4598) Expose Password Hashes

CVE-2025-28032 – TOTOLINK Router Pre-Auth Buffer Overflow Vulnerability

Building interactive agents in video game worlds

Teach & Learn with MongoDB: Professor Chanda Raj Kumar

CVE-2025-32896 – Apache SeaTunnel Unauthenticated Arbitrary File Read and Deserialization Vulnerability

CVE-2025-46229 – Israpil Textmetrics Cross-site Scripting Vulnerability

Related Posts