CVE-2025-5127 – FLIR AX8 Cross-Site Scripting Vulnerability

May 24, 2025

CVE ID : CVE-2025-5127

Published : May 24, 2025, 4:15 p.m. | 4 hours, 39 minutes ago

Description : A vulnerability, which was classified as problematic, has been found in FLIR AX8 up to 1.46.16. This issue affects some unknown processing of the file /prod.php. The manipulation of the argument cmd leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5128 – ScriptAndTools Real-Estate-website-in-PHP SQL Injection Vulnerability

Next Article RefreshOS is a distribution built on the robust foundation of Debian

Vibe Loop: AI-native reliability engineering for the real world

Docker Compose gets new features for building and running agents

Why Enterprises Are Choosing AI-Driven React.js Development Companies in 2025

Unmasking The Magic: The Wizard Of Oz Method For UX Research

This Asus portable monitor transformed my remote work setup (and it’s only $170)

This Android tablet is the best I’ve tested all year – and it’s currently on sale

Three.js Instances: Rendering Multiple Objects Simultaneously

Netflix Tudum Architecture: from CQRS with Kafka to CQRS with RAW Hollow

Salesforce Health Cloud Demo: Provider Search & Network Management in Action

Salesforce Health Cloud Demo: Provider Search & Network Management in Action

Oracle Cloud EPM: Transitioning to Forms 2.0, Dashboards 2.0 by October 2025

This Week in Laravel: React.js, Filament vs Laravel, and Junior Test

Windows 11’s Patch Tuesday update fixes annoying Firewall error log

Windows 11’s Patch Tuesday update fixes annoying Firewall error log

Microsoft Teams channels get threaded replies, emoji-powered workflows, and more

How to Login Into Spectrum Email: Full Guide for Former Time Warner & Charter

CVE-2025-5127 – FLIR AX8 Cross-Site Scripting Vulnerability

Chrome Zero-Day CVE-2025-6554 Under Active Attack — Google Issues Security Update

Critical Vulnerability in Anthropic’s MCP Exposes Developer Machines to Remote Exploits

Critical Apache Roller Vulnerability (CVSS 10.0) Enables Unauthorized Session Persistence

Surface Pro 12-inch: First impressions and hands-on review

Snipping Tool finally adds GIF export for screen recordings in Windows 11

CVE-2025-30399 – Visual Studio .NET Untrusted Search Path Remote Code Execution

7 things you need to know from Xbox’s The Outer Worlds 2 Direct, plus juicy Grounded 2 details for Obsidian’s other sequel

Microsoft Engineer Disrupts Build 2025 Keynote Over Israel Contracts

‘I don’t know if it can be saved’ — Civilization 7 is in trouble as it drops to a Mostly Negative rating on Steam

Active Directory dMSA Privilege Escalation Attack Detailed by Researchers

CVE-2025-5127 – FLIR AX8 Cross-Site Scripting Vulnerability

Related Posts