CVE-2025-20307 – Cisco BroadWorks Application Delivery Platform Cross-Site Scripting (XSS) Vulnerability

July 2, 2025

CVE ID : CVE-2025-20307

Published : July 2, 2025, 5:15 p.m. | 2 hours, 27 minutes ago

Description : A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform could allow an authenticated, remote attacker to to conduct cross-site scripting (XSS) attacks against a user of the interface.

This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit this vulnerability, the attacker must have valid administrative credentials.

Severity: 4.8 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-20309 – Cisco Unified Communications Manager/Cisco Unified Communications Manager Session Management Edition Root Account Default Credential Vulnerability

Next Article CVE-2025-6943 – Thycotic Secret Server SQL Injection Vulnerability

Full-Stack Techies vs Toptal: Which Is Better for React.js Outsourcing?

The AI productivity paradox in software engineering: Balancing efficiency and human skill retention

The impact of gray work on software development

CSS Intelligence: Speculating On The Future Of A Smarter Language

Your Roku has secret menus and screens – here’s how to unlock them

Add Paramount+, STARZ, and more to your Prime Video account for $0.99 a month – here’s how

My new favorite keychain accessory gives me 2TB of SSD storage instantly

HP’s latest OmniBook finally sold me on the 2-in-1 form factor (and it’s on sale)

Simplifying Stream Handling with Laravel’s resource Method

Simplifying Stream Handling with Laravel’s resource Method

Intelligent Parsing and Formatting of Names in PHP Applications

This Week in Laravel: Cursor Rules, Nightwatch Review, and Race Conditions

Microsoft confirms Windows 11 KB5060829 issues, but you can safely ignore it

Microsoft confirms Windows 11 KB5060829 issues, but you can safely ignore it

Hash Calculator – calculates around 50 cryptographic hashes of strings and files

Rilasciato Thunderbird 140 ESR: Un’attenzione alle esigenze aziendali

CVE-2025-20307 – Cisco BroadWorks Application Delivery Platform Cross-Site Scripting (XSS) Vulnerability

213% Increase in Ransomware Attacks Targeting Organizations With First Quarter of 2025

Cisco fixes maximum-severity flaw in enterprise unified comms platform (CVE-2025-20309)

10-Year-Old Roundcube RCE Vulnerability Let Attackers Execute Malicious Code

AI for Sustainability: How Smart Technology Is Powering the Green Revolution🌱

CVE-2025-4378 – Ataturk University ATA-AOF Mobile Application Cleartext Transmission and Hard-coded Credentials Vulnerability

They’re coming for your data: What are infostealers and how do I stay safe?

CVE-2025-48488 – FreeScout Cross-Site Scripting (XSS) Vulnerability

CVE-2024-38866 – Nagvis Livestatus Injection Vulnerability

Modernize and migrate on-premises fraud detection machine learning workflows to Amazon SageMaker

Windows 7 would boot much slower if you used specific wallpapers — A veteran Microsoft engineer links the bug to a “simple programming error”

CVE-2025-20307 – Cisco BroadWorks Application Delivery Platform Cross-Site Scripting (XSS) Vulnerability

Related Posts