CVE-2025-4376 – Sparx Systems Pro Cloud Server Cross-Site Scripting (XSS)

May 9, 2025

CVE ID : CVE-2025-4376

Published : May 9, 2025, 6:15 a.m. | 25 minutes ago

Description : Improper Input Validation vulnerability in Sparx Systems Pro Cloud Server’s WebEA model search field allows Cross-Site Scripting (XSS).
This issue affects Pro Cloud Server: earlier than 6.0.165.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4377 – Sparx Systems Pro Cloud Server Path Traversal

Next Article CVE-2025-4375 – Sparx Systems Pro Cloud Server CSRF Session Hijacking

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Helldivers 2: Heart of Democracy update is live, and you need to jump in to save Super Earth from the Illuminate

Qualcomm’s new Adreno Control Panel will let you fine-tune the GPU for certain games on Snapdragon X Elite devices

Samsung takes on LG’s best gaming TVs — adds NVIDIA G-SYNC support to 2025 flagship

The biggest unanswered questions about Xbox’s next-gen consoles

HCL Commerce V9.1 – The Power of HCL Commerce Search

HCL Commerce V9.1 – The Power of HCL Commerce Search

Community News: Latest PECL Releases (05.20.2025)

Getting Started with Personalization in Sitecore XM Cloud: Enable, Extend, and Execute

Helldivers 2: Heart of Democracy update is live, and you need to jump in to save Super Earth from the Illuminate

Helldivers 2: Heart of Democracy update is live, and you need to jump in to save Super Earth from the Illuminate

Qualcomm’s new Adreno Control Panel will let you fine-tune the GPU for certain games on Snapdragon X Elite devices

Samsung takes on LG’s best gaming TVs — adds NVIDIA G-SYNC support to 2025 flagship

CVE-2025-4376 – Sparx Systems Pro Cloud Server Cross-Site Scripting (XSS)

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-5011 – MoonlightL Hexo-Boot Cross-Site Scripting Vulnerability

Why Clients Love Big Logos (and Designers Donâ€™t)

Are you sick of AI? This iOS design app has pledged to never introduce it

Fedora 42’s big upgrade delivers new spins for COSMIC and KDE Plasma – and much more

The C# Class Handbook – Types of Classes with Code Examples

Segway’s most powerful robot mower is ready for yards of all sizes

Machine Learning in Linux: Jan – alternative to ChatGPT

Meta’s Llama Framework Flaw Exposes AI Systems to Remote Code Execution Risks

Hardware Inventory Policy

CVE-2025-4376 – Sparx Systems Pro Cloud Server Cross-Site Scripting (XSS)

Related Posts