CVE-2025-46530 – HuangYe WuDeng Hacklog Remote Attachment CSRF Stored XSS

April 24, 2025

CVE ID : CVE-2025-46530

Published : April 24, 2025, 4:15 p.m. | 2 hours, 44 minutes ago

Description : Cross-Site Request Forgery (CSRF) vulnerability in HuangYe WuDeng Hacklog Remote Attachment allows Stored XSS. This issue affects Hacklog Remote Attachment: from n/a through 1.3.2.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46529 – StressFree Sites Business Contact Widget Stored Cross-Site Scripting Vulnerability

Next Article CVE-2025-46528 – Steve Availability Calendar CSRF Stored XSS

How To Prevent WordPress SQL Injection Attacks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

Development tool updates from WWDC: Foundation Models framework, Xcode 26, Swift 6.2, and more

Decoding The SVG path Element: Line Commands

How to install iPadOS 26 on your iPad (and which models support it)

Every Apple Watch that will get WatchOS 26 (and which models won’t be supported)

iOS 26 will bring any photo on your iPhone to life with 3D spatial effects

Shortcuts is the best Apple app you’re not using – and iOS 26 makes it even more powerful

You came for PHP. Stay for what scales: How to Become A Better Developer Learning from Code & Character

You came for PHP. Stay for what scales: How to Become A Better Developer Learning from Code & Character

Sharp – High performance Node.js image processing

ELI5 Toolkit – Explain It Like I’m 5

Windows 11 now lets you reduce image size without resizing using Paint or Photos app

Windows 11 now lets you reduce image size without resizing using Paint or Photos app

Apple “innovates” Windows Vista Aero Glass with macOS 26 Liquid Glass. Oh well.

Ago is a small static blog generator without any fuzz

CVE-2025-46530 – HuangYe WuDeng Hacklog Remote Attachment CSRF Stored XSS

Microsoft Edge Rolls Out AI-Powered History Search with Privacy Focus

SAP Patch Fixes Critical CVSS 9.6 Flaw in NetWeaver: Privilege Escalation and System Integrity at Risk

Multi-account support for Amazon SageMaker HyperPod task governance

CVE-2024-13945 – ASPECT Stored Path Traversal Vulnerability

CVE-2025-46520 – Alphasis Related Posts CSRF Stored XSS

CVE-2025-4313 – SourceCodester Advanced Web Store SQL Injection Vulnerability

Cerberus Testing is a low-code test automation platform

CVE-2025-32926 – ThemeGoods Grand Restaurant WordPress Path Traversal Vulnerability

Many Fuel Tank Monitoring Systems Vulnerable to Disruption

MiMo-VL-7B: A Powerful Vision-Language Model to Enhance General Visual Understanding and Multimodal Reasoning