CVE-2025-43952 – Mettler Toledo FreeWeight.Net Web Reports Viewer Cross-Site Scripting (XSS)

April 22, 2025

CVE ID : CVE-2025-43952

Published : April 22, 2025, 6:16 p.m. | 31 minutes ago

Description : A cross-site scripting (reflected XSS) vulnerability was found in Mettler Toledo FreeWeight.Net Web Reports Viewer 8.4.0 (440). It allows an attacker to inject malicious scripts via the IW_SessionID_ parameter.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-43951 – LabVantage Local File Inclusion Vulnerability

Next Article CVE-2025-43950 – “Microsoft DPMAdirektPro DLL Hijacking Privilege Escalation Vulnerability”

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

I replaced my Pixel 9 Pro with a $750 Android for a week. Now I’m questioning my loyalty

Less UFO, more Wall-E: You’ve never seen the best robot vacuum on the market

ChatGPT can now sum up your meetings – here’s how to use it (and who can)

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

vitorccs/laravel-csv

vitorccs/laravel-csv

Dr. Axel’s JavaScript flashcards

Syntax-Highlight – Custom Element For Syntax Highlighting Content

RBDOOM-3-BFG is a modernization effort of DOOM-3-BFG

RBDOOM-3-BFG is a modernization effort of DOOM-3-BFG

Rilasciato XLibre 25.0: il nuovo fork del server grafico X.Org si presenta al mondo GNU/Linux

Scoperte 2 Nuove Vulnerabilità che Minacciano il Mondo GNU/Linux

CVE-2025-43952 – Mettler Toledo FreeWeight.Net Web Reports Viewer Cross-Site Scripting (XSS)

CVE-2025-49763: Apache Traffic Server Vulnerability Enables Memory Exhaustion Attacks

CVE-2025-6403 – “Code-projects School Fees Payment System SQL Injection Vulnerability”

Incorrect Answers Improve Math Reasoning? Reinforcement Learning with Verifiable Rewards (RLVR) Surprises with Qwen2.5-Math

Fastify (Node.Js Framework): The Secret to Creating Scalable and Secure Business Applications

Global Cybersecurity Agencies Warn of Spyware Targeting Uyghur, Tibetan, and Taiwanese Communities

CVE-2025-4326 – MRCMS Cross-Site Scripting Vulnerability

Watermarking AI-generated text and video with SynthID

NVIDIA GeForce “Game Ready” graphics driver update fixes bugs from a previous release — Flickering screens patched

CVE-2025-50181 – “Open Redirect Vulnerability in urllib3”

A Windows 11 bug makes you say goodbye to Windows Hello, but only temporarily

CVE-2025-43952 – Mettler Toledo FreeWeight.Net Web Reports Viewer Cross-Site Scripting (XSS)

Related Posts