CVE-2024-25573 – PingFederate Stored XSS Vulnerability

June 15, 2025

CVE ID : CVE-2024-25573

Published : June 15, 2025, 4:15 p.m. | 9 hours, 7 minutes ago

Description : Unsanitized user-supplied data saved in the PingFederate Administrative Console could trigger the execution of JavaScript code in subsequent user processing.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6091 – H3C GR-3000AX Buffer Overflow Vulnerability

Next Article CVE-2025-22854 – PingFederate Google Adapter HTTP Response Handling Buffer Overflow

Highlights

CVE-2025-4659 – Salesforce WordPress Plugin Full Path Disclosure Vulnerability

May 30, 2025

CVE ID : CVE-2025-4659

Published : May 30, 2025, 6:15 a.m. | 3 hours, 21 minutes ago

Description : The Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 1.4.4. This makes it possible for unauthenticated attackers to retrieve the full path of the web application, which can be used to aid other attacks. The information displayed is not useful on its own, and requires another vulnerability to be present for damage to an affected website.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

This week in AI dev tools: Apple’s Foundations Model framework, Mistral’s first reasoning model, and more (June 13, 2025)

Open Talent platforms emerging to match skilled workers to needs, study finds

Java never goes out of style: Celebrating 30 years of the language

The 5 gadgets that got me through marathons and obstacle races (and why they work)

This beastly 500W charger replaced every other charger I had – with six ports to boot

Mac Mini won’t power on? Apple will fix it for you – for free

Why I’m switching to VS Code. Hint: It’s all about AI tool integration

From Concept to Code: Final Year PHP Projects with Reports for Smart Submissions

From Concept to Code: Final Year PHP Projects with Reports for Smart Submissions

Building Construction suppliers in India

Neutralinojs v6.1 released

Microsoft Edge’s Quiet Shift to AVIF: Why It Matters

Microsoft Edge’s Quiet Shift to AVIF: Why It Matters

Windows 11 test builds are accidentally playing the Windows Vista startup sound

Leaked: ROG Xbox Ally and Xbox Ally X pre-orders set for August, launch in October

CVE-2024-25573 – PingFederate Stored XSS Vulnerability

Team46 (TaxOff) Exploits Google Chrome Zero-Day (CVE-2025-2783) in Sophisticated Phishing Campaign

High-Severity Flaw Exposes ASUS Armoury Crate to Authentication Bypass

CVE-2024-3509 – WSO2 Management Console Stored XSS

CVE-2025-31237 – Apple AFP Network Share System Termination Vulnerability

CVE-2025-44193 – SourceCodester Simple Barangay Management System SQL Injection

CVE-2025-4279 – WordPress External Image Replace Plugin Remote File Upload Vulnerability

CVE-2025-4659 – Salesforce WordPress Plugin Full Path Disclosure Vulnerability

2025’s highest-rated Xbox game on Metacritic is coming to Game Pass in a matter of days — but you’ve never heard of it

CVE-2025-4239 – PCMan FTP Server Buffer Overflow

CVE-2025-4911 – A vulnerability, which was classified as critical,

CVE-2024-25573 – PingFederate Stored XSS Vulnerability

Related Posts