Close Menu
    DevStackTipsDevStackTips
    • Home
    • News & Updates
      1. Tech & Work
      2. View All

      Report: 71% of tech leaders won’t hire devs without AI skills

      July 17, 2025

      Slack’s AI search now works across an organization’s entire knowledge base

      July 17, 2025

      In-House vs Outsourcing for React.js Development: Understand What Is Best for Your Enterprise

      July 17, 2025

      Tiny Screens, Big Impact: The Forgotten Art Of Developing Web Apps For Feature Phones

      July 16, 2025

      Too many open browser tabs? This is still my favorite solution – and has been for years

      July 17, 2025

      This new browser won’t monetize your every move – how to try it

      July 17, 2025

      Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

      July 17, 2025

      AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

      July 17, 2025
    • Development
      1. Algorithms & Data Structures
      2. Artificial Intelligence
      3. Back-End Development
      4. Databases
      5. Front-End Development
      6. Libraries & Frameworks
      7. Machine Learning
      8. Security
      9. Software Engineering
      10. Tools & IDEs
      11. Web Design
      12. Web Development
      13. Web Security
      14. Programming Languages
        • PHP
        • JavaScript
      Featured

      The details of TC39’s last meeting

      July 18, 2025
      Recent

      The details of TC39’s last meeting

      July 18, 2025

      Reclaim Space: Delete Docker Orphan Layers

      July 18, 2025

      Notes Android App Using SQLite

      July 17, 2025
    • Operating Systems
      1. Windows
      2. Linux
      3. macOS
      Featured

      KeySmith – SSH key management

      July 17, 2025
      Recent

      KeySmith – SSH key management

      July 17, 2025

      Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

      July 17, 2025

      AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

      July 17, 2025
    • Learning Resources
      • Books
      • Cheatsheets
      • Tutorials & Guides
    Home»Security»Common Vulnerabilities and Exposures (CVEs)»CVE-2025-40663 – i2A Cronos Stored XSS

    CVE-2025-40663 – i2A Cronos Stored XSS

    May 26, 2025

    CVE ID : CVE-2025-40663

    Published : May 26, 2025, 1:15 p.m. | 3 hours, 42 minutes ago

    Description : Stored Cross-Site Scripting (XSS) vulnerability in i2A-Cronos version 23.02.01.17, from i2A. It allows an authenticated attacker to upload a malicious SVG image into the user’s personal space in /CronosWeb/Modules/Persons/PersonalDocuments/PersonalDocuments.
    There is no reported fix at this time.

    Severity: 0.0 | NA

    Visit the link for more details, such as CVSS details, affected products, timeline, and more…

    Source: Read More

    Facebook Twitter Reddit Email Copy Link
    Previous ArticleCVE-2025-39498 – Spotlight Spotlight Social Media Feeds (Premium) Sensitive Data Injection
    Next Article CVE-2025-5186 – Thinkgem JeeSite SSRF

    Related Posts

    Development

    Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

    July 18, 2025
    Development

    UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

    July 18, 2025
    Leave A Reply Cancel Reply

    For security, use of Google's reCAPTCHA service is required which is subject to the Google Privacy Policy and Terms of Use.

    Continue Reading

    CVE-2025-29446 – Open-WebUI SSRF Vulnerability

    Common Vulnerabilities and Exposures (CVEs)

    CVE-2025-1333 – IBM MQ Container Keycloak Information Disclosure

    Common Vulnerabilities and Exposures (CVEs)

    Multimodal AI poses new safety risks, creates CSEM and weapons info

    News & Updates

    Inclusivity with Voice & Language [SUBSCRIBER]

    Learning Resources

    Highlights

    Linux

    Rilasciata OpenMandriva Lx 6.0: Distribuzione Indipendente con KDE Plasma 6 e Server Edition

    April 23, 2025

    Durante le festività pasquali, il team di OpenMandriva ha rilasciato una sorpresa per gli appassionati…

    CVE-2025-7491 – PHPGurukul Vehicle Parking Management System SQL Injection

    July 12, 2025

    Tracking Cache Activity with Laravel Events

    June 25, 2025

    Nights in Jail

    June 11, 2025
    © DevStackTips 2025. All rights reserved.
    • Contact
    • Privacy Policy

    Type above and press Enter to search. Press Esc to cancel.