CVE-2025-39392 – Mojoomla WPAMS Cross-site Scripting

May 19, 2025

CVE ID : CVE-2025-39392

Published : May 19, 2025, 8:15 p.m. | 2 hours, 33 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in mojoomla WPAMS allows Reflected XSS.This issue affects WPAMS: from n/a through 44.0 (17-08-2023).

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-39395 – Mojoomla WPAMS SQL Injection

Next Article CVE-2025-39389 – Solid Plugins AnalyticsWP SQL Injection

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

Full-Stack Techies vs Toptal: Which Is Better for React.js Outsourcing?

The AI productivity paradox in software engineering: Balancing efficiency and human skill retention

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

Microsoft reportedly lacks the know-how to fully leverage OpenAI’s tech — despite holding IP rights

PHP 8.5.0 Alpha 1 available for testing

PHP 8.5.0 Alpha 1 available for testing

Recording cross browser compatible media

Celebrating Perficient’s Third Databricks Champion

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

CVE-2025-39392 – Mojoomla WPAMS Cross-site Scripting

Hackers Target Over 70 Microsoft Exchange Servers to Steal Credentials via Keyloggers

Citrix Releases Emergency Patches for Actively Exploited CVE-2025-6543 in NetScaler ADC

Linux Servers Hijacked: Attackers Install Legitimate Proxy Software for Covert Operations

‘Honderden SAP NetWeaver-installaties bevatten zeer kritiek lek’

A Step-by-Step Coding Guide to Building a Gemini-Powered AI Startup Pitch Generator Using LiteLLM Framework, Gradio, and FPDF in Google Colab with PDF Export Support

CVE-2025-5523 – Enilu Web-Flash Cross-Site Scripting Vulnerability

Sequential-NIAH: A Benchmark for Evaluating LLMs in Extracting Sequential Information from Long Texts

CVE-2025-4635 – Apache Web Portal Remote Code Execution Vulnerability

The Bitter End: Unraveling Eight Years of Espionage Antics—Part One

Defining a Dedicated Query Builder in Laravel 12 With PHP Attributes

CVE-2025-39392 – Mojoomla WPAMS Cross-site Scripting

Related Posts