CVE-2025-49453 – Jatinder Pal Singh BP Profile CSRF Stored XSS

June 6, 2025

CVE ID : CVE-2025-49453

Published : June 6, 2025, 1:16 p.m. | 2 hours, 20 minutes ago

Description : Cross-Site Request Forgery (CSRF) vulnerability in Jatinder Pal Singh BP Profile as Homepage allows Stored XSS. This issue affects BP Profile as Homepage: from n/a through 1.1.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5766 – Code-projects Laundry System Cross-Site Request Forgery Vulnerability

Next Article CVE-2025-49450 – mhallmann SEPA Girocode Cross-site Scripting

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

Handling JavaScript Event Listeners With Parameters

I finally gave NotebookLM my full attention – and it really is a total game changer

Google Chrome for iOS now lets you switch between personal and work accounts

How the Trump administration changed AI: A timeline

Download your photos before AT&T shuts down its cloud storage service permanently

Laravel Live Denmark

Laravel Live Denmark

The July 2025 Laravel Worldwide Meetup is Today

Livewire Security Vulnerability

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

Halo and Half-Life combine in wild new mod, bringing two of my favorite games together in one — here’s how to play, and how it works

Surprise! The iconic Roblox ‘oof’ sound is back — the beloved meme makes “a comeback so good it hurts” after three years of licensing issues

CVE-2025-49453 – Jatinder Pal Singh BP Profile CSRF Stored XSS

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Hackers Exploit SharePoint Zero-Day Since July 7 to Steal Keys, Maintain Persistent Access

85.000 RoundCube-mailservers bevatten actief misbruikt RCE-lek

Windows 11’s new update system is a brutal reminder of where the Microsoft Store falls short

CVE-2025-49128 – Jackson-core Information Disclosure Vulnerability

How to Build Secure SSR Authentication with Supabase, Astro, and Cloudflare Turnstile

Perficient Included in Forrester’s AI Technical Services Landscape, Q2 2025

Satya Nadella says Microsoft’s AI model performance is “doubling every 6 months”, despite the estranged OpenAI partnership

DEKUVE is a Linux distribution based on Debian

How iPadOS 26 convinced me to switch from Mac to iPad full-time – and why I don’t regret it

CVE-2025-49453 – Jatinder Pal Singh BP Profile CSRF Stored XSS

Related Posts