CVE-2025-51629 – Eccobook PdfViewer XSS

August 7, 2025

CVE ID : CVE-2025-51629

Published : Aug. 7, 2025, 6:15 p.m. | 5 hours, 55 minutes ago

Description : A cross-site scripting (XSS) vulnerability in the PdfViewer component of Agenzia Impresa Eccobook 2.81.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Temp parameter.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-8697 – AgentUniverse MCPSessionManager/MCPTool/MCPToolkit Os Command Injection Vulnerability

Next Article CVE-2023-41532 – Medicore Hospital Management System SQL Injection

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

Melissa brings its data quality solutions to Azure with new SSIS integration

Automating Design Systems: Tips And Resources For Getting Started

This $180 mini projector has no business being this good for the price

GPT-5 is finally here, and you can access it for free today – no subscription needed

Changing this Android setting instantly doubled my phone speed (Samsung and Google models included)

ChatGPT can now talk nerdy to you – plus more personalities and other upgrades beyond GPT-5

Advanced Application Architecture through Laravel’s Service Container Management

Advanced Application Architecture through Laravel’s Service Container Management

Switch Between Personas in Laravel With the MultiPersona Package

AI-Driven Smart Tagging and Metadata in AEM Assets

Bill Gates on AI’s Impact: ‘Be Curious, Read, and Use the Latest Tools’

Bill Gates on AI’s Impact: ‘Be Curious, Read, and Use the Latest Tools’

Halo Infinite’s Fall Update: New Features and Modes to Revive the Game?

Forza Motorsport’s Future in Jeopardy: Fans Demand Clarity from Microsoft

CVE-2025-51629 – Eccobook PdfViewer XSS

Microsoft to Pull Plug on Shared EWS Access in Hybrid Exchange by October

Google Confirms Salesforce Database Breach by ShinyHunters Group

Top Cisco Authorized Reseller in India

CVE-2025-7120 – Campcodes Complaint Management System SQL Injection

Critical ScreenConnect Vulnerability Let Attackers Inject Malicious Code

Importance of Performance Adaptation in Frontend Development

Denmark’s Government Ditches Microsoft for Open Source

“Bungie leadership needs to be gutted completely.” Former Marathon dev says Bungie “was extremely toxic and humiliating” to work with days after art theft controversy

CVE-2025-7084 – “Belkin F9K1122 Web-based Buffer Overflow Vulnerability”

Amazon Aurora Global Database introduces support for up to 10 secondary Regions

CVE-2025-51629 – Eccobook PdfViewer XSS

Related Posts