CVE-2025-3821 – SourceCodester Web-based Pharmacy Product Management System Cross-Site Scripting Vulnerability

April 21, 2025

CVE ID : CVE-2025-3821

Published : April 20, 2025, 4:15 a.m. | 1 day, 2 hours ago

Description : A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file add-admin.php. The manipulation of the argument txtpassword/txtfullname/txtemail leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-0632 – Formulatrix Rock Maker Web Local File Inclusion Vulnerability

Next Article CVE-2025-29058 – Qimou CMS Remote Code Execution Vulnerability

Highlights

CVE-2025-4450 – D-Link DIR-619L Remote Buffer Overflow Vulnerability

May 9, 2025

CVE ID : CVE-2025-4450

Published : May 9, 2025, 1:15 a.m. | 2 hours, 22 minutes ago

Description : A vulnerability, which was classified as critical, was found in D-Link DIR-619L 2.04B04. Affected is the function formSetEasy_Wizard. The manipulation of the argument curTime leads to buffer overflow. It is possible to launch the attack remotely. The vendor was contacted early about this disclosure. This vulnerability only affects products that are no longer supported by the maintainer.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Designing For TV: Principles, Patterns And Practical Guidance (Part 2)

Neo4j introduces new graph architecture that allows operational and analytics workloads to be run together

Beyond the benchmarks: Understanding the coding personalities of different LLMs

Top 10 Use Cases of Vibe Coding in Large-Scale Node.js Applications

Building smarter interactions with MCP elicitation: From clunky tool calls to seamless user experiences

From Zero to MCP: Simplifying AI Integrations with xmcp

Distribution Release: Linux Mint 22.2

Coded Smorgasbord: Basically, a Smorgasbord

Drupal 11’s AI Features: What They Actually Mean for Your Team

Drupal 11’s AI Features: What They Actually Mean for Your Team

Why Data Governance Matters More Than Ever in 2025?

Perficient Included in the IDC Market Glance for Digital Business Professional Services, 3Q25

How DevOps Teams Are Redefining Reliability with NixOS and OSTree-Powered Linux

How DevOps Teams Are Redefining Reliability with NixOS and OSTree-Powered Linux

Distribution Release: Linux Mint 22.2

‘Cronos: The New Dawn’ was by far my favorite experience at Gamescom 2025 — Bloober might have cooked an Xbox / PC horror masterpiece

CVE-2025-3821 – SourceCodester Web-based Pharmacy Product Management System Cross-Site Scripting Vulnerability

Critical Linux UDisks Daemon Vulnerability (CVE-2025-8067) Exposes Privileged Data to Local Attackers

Google Slapped with $381 Million Fine in France Over Gmail Ads, Cookie Consent Missteps

How to share files with sensitive content securely on Windows 11

CVE-2025-6912 – PHPGurukul Student Record System SQL Injection Vulnerability

Build Adobe Express Add-Ons and Get Funded

CVE-2025-7161 – PHPGurukul Zoo Management System SQL Injection Vulnerability

CVE-2025-4450 – D-Link DIR-619L Remote Buffer Overflow Vulnerability

CVE-2025-8178 – Tenda AC10 Heap-Based Buffer Overflow Vulnerability

ConnectWise to Rotate Code-Signing Certificates

CVE-2025-35113 – Agiloft Remote Code Execution Vulnerability

CVE-2025-3821 – SourceCodester Web-based Pharmacy Product Management System Cross-Site Scripting Vulnerability

Related Posts