CVE-2025-49450 – mhallmann SEPA Girocode Cross-site Scripting

June 6, 2025

CVE ID : CVE-2025-49450

Published : June 6, 2025, 1:16 p.m. | 2 hours, 20 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in mhallmann SEPA Girocode allows Stored XSS. This issue affects SEPA Girocode: from n/a through 0.5.1.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-49453 – Jatinder Pal Singh BP Profile CSRF Stored XSS

Next Article CVE-2025-49449 – WP Map Plugins Interactive Regional Map of Africa CSRF Vulnerability

How To Prevent WordPress SQL Injection Attacks

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Databricks adds new tools like Lakebase, Lakeflow Designer, and Agent Bricks to better support building AI apps and agents in the enterprise

Zencoder launches end-to-end UI testing agent

NVIDIA chief rebuffs Anthropic’s AI slashing 50% of entry-level white collar jobs from Gen Z claim: “He thinks AI is so scary, but only they should do it.”

OpenAI shifts to Google for cloud computing support as Microsoft partnership falters, despite Sam Altman’s “compute-sufficient” claim

Clair Obscur: Expedition 33 now lets you rematch the game’s most brutal boss

The Alters PC review: I’m rethinking my own life paths after falling in love with a sci-fi game

SVAR Svelte Filter: Visual Query Builder for Data-Driven Apps

SVAR Svelte Filter: Visual Query Builder for Data-Driven Apps

Developing a Serverless Blogging Platform with AWS Lambda and Python

YAML files in DBT

NVIDIA chief rebuffs Anthropic’s AI slashing 50% of entry-level white collar jobs from Gen Z claim: “He thinks AI is so scary, but only they should do it.”

NVIDIA chief rebuffs Anthropic’s AI slashing 50% of entry-level white collar jobs from Gen Z claim: “He thinks AI is so scary, but only they should do it.”

OpenAI shifts to Google for cloud computing support as Microsoft partnership falters, despite Sam Altman’s “compute-sufficient” claim

Clair Obscur: Expedition 33 now lets you rematch the game’s most brutal boss

CVE-2025-49450 – mhallmann SEPA Girocode Cross-site Scripting

Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Interaction

Graphite spyware used in Apple iOS zero-click attacks on journalists

CVE-2025-47928 – Spotify/Github Spotipy Untrusted Code Execution Vulnerability

CVE-2025-5888 – jsnjfz WebStack-Guns Cross-Site Request Forgery Vulnerability

Snowflake Charts New AI Territory: Cortex AISQL & Snowflake Intelligence Poised to Reshape Data Analytics

CVE-2024-55595 – Cisco Webex Meeting Server Unvalidated Redirect

CodeSOD: A Real POS Report

Windows 11 KB5058502 restores Win + C, direct download links for version 23H2

CVE-2025-47755 – SFT VS Out-of-Bounds Read Arbitrary Code Execution

CVE-2025-39355 – FAT Services Booking SQL Injection

CVE-2025-49450 – mhallmann SEPA Girocode Cross-site Scripting

Related Posts