CVE-2025-46228 – Bastien Ho Eventpost DOM-Based Cross-Site Scripting Vulnerability

April 22, 2025

CVE ID : CVE-2025-46228

Published : April 22, 2025, 10:15 a.m. | 58 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Bastien Ho Event post allows DOM-Based XSS. This issue affects Event post: from n/a through 5.9.11.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46229 – Israpil Textmetrics Cross-site Scripting Vulnerability

Next Article CVE-2025-46227 – Brecht Custom Related Posts Cross-site Scripting (XSS)

Tenable updates Vulnerability Priority Rating scoring method to flag fewer vulnerabilities as critical

Google adds updated workspace templates in Firebase Studio that leverage new Agent mode

AI and its impact on the developer experience, or ‘where is the joy?’

Google launches OSS Rebuild tool to improve trust in open source packages

EcoFlow’s new portable battery stations are lighter and more powerful (DC plug included)

7 ways Linux can save you money

My favorite Kindle tablet just got a kids model, and it makes so much sense

You can turn your Google Photos into video clips now – here’s how

Blade Service Injection: Direct Service Access in Laravel Templates

Blade Service Injection: Direct Service Access in Laravel Templates

This Week in Laravel: NativePHP Mobile and AI Guidelines from Spatie

Retrieve the Currently Executing Closure in PHP 8.5

FOSS Weekly #25.30: AUR Poisoned, Linux Rising, PPA Explained, New Open Source Grammar Checker and More

FOSS Weekly #25.30: AUR Poisoned, Linux Rising, PPA Explained, New Open Source Grammar Checker and More

How to Open Control Panel in Windows 11

How to Shut Down Windows 11

CVE-2025-46228 – Bastien Ho Eventpost DOM-Based Cross-Site Scripting Vulnerability

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Hackers Deploy Stealth Backdoor in WordPress Mu-Plugins to Maintain Admin Access

CVE-2025-6859 – SourceCodester Best Salon Management System SQL Injection Vulnerability

“Are we all doomed?” — Fiverr CEO Micha Kaufman warns that AI is coming for all of our jobs, just as Bill Gates predicted

CES 2015 in Las Vegas: first impressions, 5 hot topics

ChatGPT Spots Cancer Missed by Doctors; Woman Says It Saved Her Life

CVE-2025-1420 – Konsola Proget Stored Cross-Site Scripting Vulnerability

Custom Software Development : A Detailed Guide (2025)

CVE-2025-48292 – GoodLayers Tourmaster PHP Remote File Inclusion Vulnerability

CVE-2025-6444 – ServiceStack NTLM Relay Vulnerability