CVE-2025-47668 – CookieCode Stored Cross-Site Scripting Vulnerability

May 7, 2025

CVE ID : CVE-2025-47668

Published : May 7, 2025, 3:16 p.m. | 20 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in cookiecode CookieCode allows Stored XSS. This issue affects CookieCode: from n/a through 2.4.4.

Severity: 5.9 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47669 – Sabuj Kundu CBX Map for Google Map & OpenStreetMap Cross-site Scripting

Next Article CVE-2025-47674 – Credova Financial CSRF

Highlights

CVE-2025-6224 – Juju Certificate Private Key Exposure

July 1, 2025

CVE ID : CVE-2025-6224

Published : July 1, 2025, 11:15 a.m. | 4 hours, 20 minutes ago

Description : Certificate generation in juju/utils using the cert.NewLeaf function could include private information. If this certificate were then transferred over the network in plaintext, an attacker listening on that network could sniff the certificate and trivially extract the private key from it.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: Identify a Nap

Ambient Animations In Web Design: Principles And Implementation (Part 1)

Benchmarking AI-assisted developers (and their tools) for superior AI governance

Digital.ai launches White-box Cryptography Agent to enable stronger application security

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Development Release: Zorin OS 18 Beta

Stop using .reverse().find(): meet findLast()

Stop using .reverse().find(): meet findLast()

@ts-ignore is almost always the worst option

MutativeJS v1.3.0 is out with massive performance gains

How I Configure Polybar to Customize My Linux Desktop

How I Configure Polybar to Customize My Linux Desktop

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

CVE-2025-47668 – CookieCode Stored Cross-Site Scripting Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Editing client-side encrypted MS Word file now works in Google Docs

Universal Design Principles Supporting Operable Content – Equitable Use

Cisco fixes maximum-severity flaw in enterprise unified comms platform (CVE-2025-20309)

South African man imprisoned after ransom demand against his former employer

CVE-2025-6224 – Juju Certificate Private Key Exposure

CVE-2025-1754 – GitLab Unauthenticated File Upload Vulnerability

How I personalized my ChatGPT conversations – why it’s a game changer

iPhone alarm not going off? 6 potential fixes to this annoying issue

CVE-2025-47668 – CookieCode Stored Cross-Site Scripting Vulnerability

Related Posts