CVE-2025-7408 – SourceCodester Zoo Management System Cross-Site Scripting Vulnerability

July 10, 2025

CVE ID : CVE-2025-7408

Published : July 10, 2025, 3:15 p.m. | 4 hours, 3 minutes ago

Description : A vulnerability has been found in SourceCodester Zoo Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/templates/animal_form_template.php. The manipulation of the argument msg leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-7365 – Keycloak Email Hijacking Vulnerability

Next Article CVE-2025-7370 – Libsoup Cookie Parsing NULL Pointer Dereference Vulnerability

Highlights

CVE-2025-49574 – Quarkus Vert.x Data Leak

June 23, 2025

CVE ID : CVE-2025-49574

Published : June 23, 2025, 8:15 p.m. | 5 hours, 46 minutes ago

Description : Quarkus is a Cloud Native, (Linux) Container First framework for writing Java applications. In versions prior to 3.24.0, there is a potential data leak when duplicating a duplicated context. Quarkus extensively uses the Vert.x duplicated context to implement context propagation. With the new semantic data from one transaction can leak to the data from another transaction. From a Vert.x point of view, this new semantic clarifies the behavior. A significant amount of data is stored in the duplicated context, including request scope, security details, and metadata. Duplicating a duplicated context is rather rare and is only done in a few places. This issue has been patched in version 3.24.0.

Severity: 6.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Optimizing PWAs For Different Display Modes

Node.js Web App Development Costs: A 2025 Executive Pricing Guide

Google locking down Android security with upcoming developer verification requirements for sideloaded apps

Microsoft donates DocumentDB to the Linux Foundation

Google can translate your voice in real time now – try it free

The one-click Linux app I use for instant online anonymity

You can try Android 16’s new lock screen widgets – if you have one of these phones

Apple’s iPhone 17 event launch date is official – here’s everything we expect

Password Strength Estimator Validation in Laravel

Password Strength Estimator Validation in Laravel

Laravel’s Enhanced String Validation with Inverse Methods

Using SQLite in production with Laravel

Microsoft Excel just got a Copilot function — but the new AI has some surprising limitations

Microsoft Excel just got a Copilot function — but the new AI has some surprising limitations

Why Final Fantasy XIV fans are review‑bombing the game on Steam

Google Chrome VPN under fire for secretly screenshotting users’ browsing habits

CVE-2025-7408 – SourceCodester Zoo Management System Cross-Site Scripting Vulnerability

Yemen Cyber Army hacker jailed after stealing millions of people’s data

CISA Adds Three Exploited Vulnerabilities to KEV Catalog Affecting Citrix and Git

CVE-2025-22377 – Samsung Exynos Heap-based Out-of-Bounds Write Vulnerability

Lilium’s financial collapse triggers CustomCells insolvency at core German sites

CVE-2025-0627 – WordPress Tag, Category, and Taxonomy Manager Stored Cross-Site Scripting Vulnerability

CVE-2025-57773 – DataEase JNDI Injection Vulnerability

CVE-2025-49574 – Quarkus Vert.x Data Leak

NordVPN Linux App Updated with New GUI

Rilasciata Tails 6.19: Aggiornamenti e Miglioramenti di Sicurezza

I missed having Xbox Remote Play on my ROG Ally — but then I found my Steam Deck can do it even better

CVE-2025-7408 – SourceCodester Zoo Management System Cross-Site Scripting Vulnerability

Related Posts