CVE-2025-43924 – Unicom Focal Point Stored Cross Site Scripting Vulnerability

June 3, 2025

CVE ID : CVE-2025-43924

Published : June 3, 2025, 3:15 p.m. | 17 minutes ago

Description : Cross Site Scripting vulnerability was discovered in Unicom Focal Point 7.6.1. The val parameter in SettingController (for /fp/admin/settings/loginpage) and the rootserviceurl parameter in FriendsController (for /fp/admin/settings/friends), entered by an admin, allow stored XSS.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-43925 – Unicom Focal Point Data Encryption Key Hardcoded Vulnerability

Next Article CVE-2025-43923 – Unicom Focal Point SQL Injection Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Players aren’t buying Call of Duty’s “error” excuse for the ads Activision started forcing into the game’s menus recently

In Sam Altman’s world, the perfect AI would be “a very tiny model with superhuman reasoning capabilities” for any context

Sam Altman’s ouster from OpenAI was so dramatic that it’s apparently becoming a movie — Will we finally get the full story?

One of Microsoft’s biggest hardware partners joins its “bold strategy, Cotton” moment over upgrading to Windows 11, suggesting everyone just buys a Copilot+ PC

LatAm’s First Databricks Champion at Perficient

LatAm’s First Databricks Champion at Perficient

Beyond AEM: How Adobe Sensei Powers the Full Enterprise Experience

Simplify Negative Relation Queries with Laravel’s whereDoesntHaveRelation Methods

Players aren’t buying Call of Duty’s “error” excuse for the ads Activision started forcing into the game’s menus recently

Players aren’t buying Call of Duty’s “error” excuse for the ads Activision started forcing into the game’s menus recently

In Sam Altman’s world, the perfect AI would be “a very tiny model with superhuman reasoning capabilities” for any context

Sam Altman’s ouster from OpenAI was so dramatic that it’s apparently becoming a movie — Will we finally get the full story?

CVE-2025-43924 – Unicom Focal Point Stored Cross Site Scripting Vulnerability

HPE StoreOnce Faces Critical CVE-2025-37093 Vulnerability — Urges Immediate Patch Upgrade

35,000 Solar Power Systems Exposed To Internet Are Vulnerable To Cyberattacks

Understanding Microservices Architecture: Benefits and Challenges Explained

Best Free and Open Source Alternatives to Microsoft Photos

CVE-2025-48137 – Proxymis Interview SQL Injection

TokenBridge: Bridging The Gap Between Continuous and Discrete Token Representations In Visual Generation

CVE-2025-39402 – Mojoomla WPAMS Unrestricted File Upload Remote Code Execution

Distribution Release: Nitrux 19c70056

Agentforce and Unstructured Data = Yes!

Empowering Businesses Through Technology.

CVE-2025-43924 – Unicom Focal Point Stored Cross Site Scripting Vulnerability

Related Posts