CVE-2025-43952 – Mettler Toledo FreeWeight.Net Web Reports Viewer Cross-Site Scripting (XSS)

April 22, 2025

CVE ID : CVE-2025-43952

Published : April 22, 2025, 6:16 p.m. | 31 minutes ago

Description : A cross-site scripting (reflected XSS) vulnerability was found in Mettler Toledo FreeWeight.Net Web Reports Viewer 8.4.0 (440). It allows an attacker to inject malicious scripts via the IW_SessionID_ parameter.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-43951 – LabVantage Local File Inclusion Vulnerability

Next Article CVE-2025-43950 – “Microsoft DPMAdirektPro DLL Hijacking Privilege Escalation Vulnerability”

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

I shouldn’t be surprised the first vertical ergonomic mouse from this gaming brand is great, but here we are

Clair Obscur: Expedition 33 just cracked me into installing a mod for the first time ever

AI agent deployments will grow 327% during the next two years. Here’s what to do now

7 ways to lock down your phone’s security – before it’s too late

Lit.js: Building Fast, Lightweight, and Scalable Web Components

Lit.js: Building Fast, Lightweight, and Scalable Web Components

Simplify Password Requirement Displays with Laravel’s appliedRules() Method

Populate is a Supercharged Seeder for Laravel

I shouldn’t be surprised the first vertical ergonomic mouse from this gaming brand is great, but here we are

I shouldn’t be surprised the first vertical ergonomic mouse from this gaming brand is great, but here we are

Clair Obscur: Expedition 33 just cracked me into installing a mod for the first time ever

Offpunk is an offline-first command-line browser

CVE-2025-43952 – Mettler Toledo FreeWeight.Net Web Reports Viewer Cross-Site Scripting (XSS)

Apache Parquet Java Vulnerability CVE-2025-46762 Exposes Systems to Remote Code Execution Attacks

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Salesforce AI Research Introduces SummHay: A Robust AI Benchmark for Evaluating Long-Context Summarization in LLMs and RAG Systems

The tasks college students are using Claude AI for most, according to Anthropic

Comparing Full Stack and Headless CMS Platforms

How Heroku migrated hundreds of thousands of self-managed PostgreSQL databases to Amazon Aurora

SelfCodeAlign: An Open and Transparent AI Framework for Training Code LLMs that Outperforms Larger Models without Distillation or Annotation Costs

CVE-2024-58098 – Linux Kernel BPF Packet Pointer Invalidation Vulnerability

Are YOU actually actively using AI tools? — Weekend discussion 💬

What is Typecasting in Go? Explained with Code Examples

CVE-2025-43952 – Mettler Toledo FreeWeight.Net Web Reports Viewer Cross-Site Scripting (XSS)

Related Posts