CVE-2025-41439 – RICOH Streamline NX Reflected Cross-Site Scripting Vulnerability

June 30, 2025

CVE ID : CVE-2025-41439

Published : June 30, 2025, 10:15 a.m. | 5 hours, 14 minutes ago

Description : A reflected cross-site scripting vulnerability via a specific parameter exists in SLNX Help Documentation of RICOH Streamline NX. If this vulnerability is exploited, an arbitrary script may be executed in the web browser of the user who accessed the product.

Severity: 6.1 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-53416 – CVE-2022-22954 Apache HTTP Server Remote Code Execution

Next Article CVE-2024-8419 – Apache Unauthenticated Remote Fail-Safe State Vulnerability

Highlights

CVE-2025-53374 – Dokploy Information Disclosure Vulnerability

July 7, 2025

CVE ID : CVE-2025-53374

Published : July 7, 2025, 4:15 p.m. | 1 hour, 8 minutes ago

Description : Dokploy is a self-hostable Platform as a Service (PaaS) that simplifies the deployment and management of applications and databases. An authenticated low-privileged account can retrieve detailed profile information about another users in the same organization by directly invoking user.one. The response discloses personally-identifiable information (PII) such as e-mail address, role, two-factor status, organization ID, and various account flags. The fix will be available in the v0.23.7.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Sentry launches MCP monitoring tool

10 Benefits of Hiring a React.js Development Company (2025–2026 Edition)

From Line To Layout: How Past Experiences Shape Your Design Career

Hire React.js Developers in the US: How to Choose the Right Team for Your Needs

I’ve tested every Samsung Galaxy phone in 2025 – here’s the model I’d recommend on sale

Google Photos just put all its best editing tools a tap away – here’s the shortcut

Claude can teach you how to code now, and more – how to try it

One of the best work laptops I’ve tested has MacBook written all over it (but it’s even better)

Controlling Execution Flow with Laravel’s Sleep Helper

Controlling Execution Flow with Laravel’s Sleep Helper

Generate Secure Temporary Share Links for Files in Laravel

This Week in Laravel: Filament 4, Laravel Boost, and Junie Review

KDE Plasma 6 on Wayland: the Payoff for Years of Plumbing

KDE Plasma 6 on Wayland: the Payoff for Years of Plumbing

FOSS Weekly #25.33: Debian 13 Released, Torvalds vs RISC-V, Arch’s New Tool, GNOME Perfection and More Linux Stuff

Ultimate ChatGPT-5 Prompt Guide: 52 Ideas for Any Task

CVE-2025-41439 – RICOH Streamline NX Reflected Cross-Site Scripting Vulnerability

CISA Adds Two N-able N-central Flaws to Known Exploited Vulnerabilities Catalog

From Banking Darling to $1B Fraud Magnet: Inside the Zelle Lawsuit 2025

CVE-2025-32245 – LambertGroup Apollo SQL Injection Vulnerability

CVE-2025-7118 – UTT HiPER 840G Buffer Overflow Vulnerability

CVE-2025-3092 – Cisco WebEx Brute Force User Enumeration

CVE-2025-4914 – PHPGurukul Auto Taxi Stand Management System SQL Injection

CVE-2025-53374 – Dokploy Information Disclosure Vulnerability

AsyncRAT’s Open-Source Code Sparks Surge in Dangerous Malware Variants Across the Globe

20-Year-Old Vulnerability Allows Hackers to Control Train Brakes

This Week in Laravel: Filament 4, Laravel Boost, and Junie Review

CVE-2025-41439 – RICOH Streamline NX Reflected Cross-Site Scripting Vulnerability

Related Posts