CVE-2025-4989 – “Product Manager 3DEXPERIENCE Stored XSS”

May 30, 2025

CVE ID : CVE-2025-4989

Published : May 30, 2025, 3:15 p.m. | 1 hour, 44 minutes ago

Description : A stored Cross-site Scripting (XSS) vulnerability affecting Requirements in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user’s browser session.

Severity: 8.7 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4990 – “3DEXPERIENCE Product Manager Stored XSS”

Next Article CVE-2025-4991 – “3DEXPERIENCE Collaborative Industry Innovator Stored XSS”

Highlights

CVE-2025-7905 – Itsoucecode Insurance Management System SQL Injection Vulnerability

July 20, 2025

CVE ID : CVE-2025-7905

Published : July 20, 2025, 7:15 p.m. | 4 hours, 2 minutes ago

Description : A vulnerability has been found in itsourcecode Insurance Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /insertPayment.php. The manipulation of the argument recipt_no leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Microsoft Graph CLI to be retired

The state of DevOps and AI: Not just hype

A Breeze Of Inspiration In September (2025 Wallpapers Edition)

10 Top Generative AI Development Companies for Enterprise Node.js Projects

I asked AI to modify mission-critical code, and what happened next haunts me

Why you should delete your browser extensions right now – or do this to stay safe

Dolby Vision 2 comes with big upgrades – here’s which TVs get them first

This one small feature makes this travel charger my favorite for business trips

Laracon AU 2025 Talk Titles Revealed

Laracon AU 2025 Talk Titles Revealed

Stop Writing Bad Controllers: Laravel Custom Collections Transform Your Code

Handle ownership relationships between Eloquent models with Laravel Ownable

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

How to Open Ports in Firewall on Windows Server

Google TV Remote Not Working? 5 Quick Fixes

CVE-2025-4989 – “Product Manager 3DEXPERIENCE Stored XSS”

Malicious npm Package nodejs-smtp Mimics Nodemailer, Targets Atomic and Exodus Wallets

Silver Fox Exploits Microsoft-Signed WatchDog Driver to Deploy ValleyRAT Malware

Five Ways to Lazy Load Images for Better Website Performance

CVE-2023-3866 – Samba ksmbd NULL Pointer Dereference

More Than 100 Groups and Individuals Oppose GDPR Changes

The Complete Beginner’s Guide to Terminal/Command Prompt

CVE-2025-7905 – Itsoucecode Insurance Management System SQL Injection Vulnerability

CVE-2025-1531 – Hitachi Ops Center Analyzer Viewpoint Authentication Credentials Leakage

CVE-2025-6569 – “Code-projects School Fees Payment System Cross-Site Scripting Vulnerability”

CVE-2025-0549 – GitLab OAuth Bypass Vulnerability

CVE-2025-4989 – “Product Manager 3DEXPERIENCE Stored XSS”

Related Posts