CVE-2025-46238 – Apache RBAER Cross-Site Scripting Vulnerability

April 22, 2025

CVE ID : CVE-2025-46238

Published : April 22, 2025, 10:15 a.m. | 58 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in rbaer List Last Changes allows Stored XSS. This issue affects List Last Changes: from n/a through 1.2.1.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46239 – Theme Switcha Cross-site Scripting Vulnerability

Next Article CVE-2025-46236 – Link Software LLC HTML Forms Stored Cross-site Scripting (XSS)

Highlights

CVE-2025-4731 – TOTOLINK HTTP POST Request Handler Buffer Overflow Vulnerability

May 15, 2025

CVE ID : CVE-2025-4731

Published : May 16, 2025, 12:15 a.m. | 42 minutes ago

Description : A vulnerability classified as critical has been found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. This affects an unknown part of the file /boafrm/formPortFw of the component HTTP POST Request Handler. The manipulation of the argument service_type leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Value-Driven AI Roadmap

This week in AI updates: Mistral’s new Le Chat features, ChatGPT updates, and more (September 5, 2025)

Designing For TV: Principles, Patterns And Practical Guidance (Part 2)

Neo4j introduces new graph architecture that allows operational and analytics workloads to be run together

‘Job Hugging’ Trend Emerges as Workers Confront AI Uncertainty

Distribution Release: MocaccinoOS 25.09

Composition in CSS

DataCrunch raises €55M to boost EU AI sovereignty with green cloud infrastructure

Finally, safe array methods in JavaScript

Finally, safe array methods in JavaScript

Perficient Interviewed for Forrester Report on AI’s Transformative Role in DXPs

Perficient’s “What If? So What?” Podcast Wins Gold Stevie® Award for Technology Podcast

Distribution Release: MocaccinoOS 25.09

Distribution Release: MocaccinoOS 25.09

Speed Isn’t Everything When Buying SSDs – Here’s What Really Matters!

14 Themes for Beautifying Your Ghostty Terminal

CVE-2025-46238 – Apache RBAER Cross-Site Scripting Vulnerability

Qantas Airways Slashes CEO Bonus After Cyberattack Exposes 5.7 Million Customers

UAE Cyber Security Council Flags 70% Smart Home Devices as Vulnerable

Memoization and Function Caching with this PHP Package

CVE-2025-39454 – Jeroen Peters Name Directory Missing Authorization Vulnerability

How to Use Snapchat on Your PC or Laptop

Shopify Summer ’25 Edition Introduces Horizon, a New Standard for Creative Control

CVE-2025-4731 – TOTOLINK HTTP POST Request Handler Buffer Overflow Vulnerability

CVE-2025-48486 – FreeScout Cross-Site Scripting (XSS) Vulnerability

Cataclysm: Bright Nights is a roguelike with sci-fi elements

Test Deferred Operations Easily with Laravel’s withoutDefer Helper

CVE-2025-46238 – Apache RBAER Cross-Site Scripting Vulnerability

Related Posts