CVE-2025-7803 – Descreekert wx-discuz Cross-Site Scripting Vulnerability

July 18, 2025

CVE ID : CVE-2025-7803

Published : July 18, 2025, 8:15 p.m. | 2 hours, 31 minutes ago

Description : A vulnerability was found in descreekert wx-discuz up to 12bd4745c63ec203cb32119bf77ead4a923bf277. It has been classified as problematic. This affects the function validToken of the file /wx.php. The manipulation of the argument echostr leads to cross site scripting. It is possible to initiate the attack remotely. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-50581 – MRCMS Cross-Site Scripting Vulnerability

Next Article CVE-2025-7805 – Tenda FH451 PPTP Stack Buffer Overflow

In-House vs. Outsource Node.js Development Teams: 9 Key Differences for the C-Suite (2025)

Why Non-Native Content Designers Improve Global UX

DevOps won’t scale without platform engineering and here’s why your teams are still stuck

This week in AI dev tools: Slack’s enterprise search, Claude Code’s analytics dashboard, and more (July 18, 2025)

I ditched my Bluetooth speakers for this slick turntable – and it’s more practical than I thought

This split keyboard offers deep customization – if you’re willing to go all in

I spoke with an AI version of myself, thanks to Hume’s free tool – how to try it

I took a walk with Meta’s new Oakley smart glasses – they beat my Ray-Bans in every way

The details of TC39’s last meeting

The details of TC39’s last meeting

Simple wrapper for Chrome’s built-in local LLM (Gemini Nano)

Online Examination System using PHP and MySQL

Top 7 Computer Performance Test Tools Online (Free & Fast)

Top 7 Computer Performance Test Tools Online (Free & Fast)

10 Best Windows 11 Encryption Software

Google Chrome Is Testing Dynamic Country Detection for Region-Specific Features

CVE-2025-7803 – Descreekert wx-discuz Cross-Site Scripting Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

CVE-2025-30360 – Webpack-dev-server Cross-site WebSocket Hijacking Vulnerability

NVIDIA Releases Cosmos-Reason1: A Suite of AI Models Advancing Physical Common Sense and Embodied Reasoning in Real-World Environments

Apple Researchers Reveal Structural Failures in Large Reasoning Models Using Puzzle-Based Evaluation

CVE-2025-32431 – Traefik Path Traversal Vulnerability

Germany wants Google and Apple to ban China’s “illegal” DeepSeek AI — after it failed to comply with data protection laws

After Bankruptcy, 23andMe Finds a Buyer in Regeneron—But What Happens to Your Data?

The secret to Linux’s remarkable journey from one dev’s hobby to 40 million lines of code

5 Ways Identity-based Attacks Are Breaching Retail

CVE-2025-7803 – Descreekert wx-discuz Cross-Site Scripting Vulnerability

Related Posts