CVE-2025-47929 – DumbDrop DOM Cross-Site Scripting Vulnerability

May 15, 2025

CVE ID : CVE-2025-47929

Published : May 15, 2025, 9:15 p.m. | 3 hours, 42 minutes ago

Description : DumbDrop, a file upload application that provides an interface for dragging and dropping files, has a DOM cross-site scripting vulnerability in the upload functionality prior to commit db27b25372eb9071e63583d8faed2111a2b79f1b. A user could be tricked into uploading a file with a malicious payload. Commit db27b25372eb9071e63583d8faed2111a2b79f1b fixes the vulnerability.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4719 – Campcodes Sales and Inventory System SQL Injection Vulnerability

Next Article CVE-2025-1138 – IBM InfoSphere Information Server Directory Traversal Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

I test a lot of AI coding tools, and this stunning new OpenAI release just saved me days of work

How to use your Android phone as a webcam when your laptop’s default won’t cut it

The 5 most customizable Linux desktop environments – when you want it your way

Gen AI use at work saps our motivation even as it boosts productivity, new research shows

Strategic Cloud Partner: Key to Business Success, Not Just Tech

Strategic Cloud Partner: Key to Business Success, Not Just Tech

Perficient’s “What If? So What?” Podcast Wins Gold at the 2025 Hermes Creative Awards

PIM for Azure Resources

Windows 11 24H2’s Settings now bundles FAQs section to tell you more about your system

Windows 11 24H2’s Settings now bundles FAQs section to tell you more about your system

You can now share an app/browser window with Copilot Vision to help you with different tasks

Microsoft will gradually retire SharePoint Alerts over the next two years

CVE-2025-47929 – DumbDrop DOM Cross-Site Scripting Vulnerability

CVE-2025-47785 – Emlog SQL Injection and Remote Code Execution

CVE-2025-47928 – Spotify/Github Spotipy Untrusted Code Execution Vulnerability

Monks boosts processing speed by four times for real-time diffusion AI image generation using Amazon SageMaker and AWS Inferentia2

Rancher Releases Patch for CVE-2024-22031 Privilege Escalation Vulnerability

Grounding Multimodal Large Language Models in Actions

Mix-LN: A Hybrid Normalization Technique that Combines the Strengths of both Pre-Layer Normalization and Post-Layer Normalization

How to delete your X/Twitter account for good (and protect your data)

5 Active Malware Campaigns in Q1 2025

RSA Conference 2024: AI hype overload

Ascension Healthcare Hit by Cyberattack: Patients Wait Hours, Chaos Ensues

CVE-2025-47929 – DumbDrop DOM Cross-Site Scripting Vulnerability

Related Posts