CVE-2025-53310 – Funnnny HidePost CSRF Reflected XSS

June 27, 2025

CVE ID : CVE-2025-53310

Published : June 27, 2025, 2:15 p.m. | 55 minutes ago

Description : Cross-Site Request Forgery (CSRF) vulnerability in Funnnny HidePost allows Reflected XSS. This issue affects HidePost: from n/a through 2.3.8.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-53311 – Navayan Subscribe CSRF Stored XSS

Next Article CVE-2025-53309 – ZealousWeb Contact Form 7 Information Disclosure

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

Forget YouTube’s ad blocker war — this Google AI Overviews clone might finally sell me on the $14/month Premium subscription

Say hello to ECMAScript 2025

Say hello to ECMAScript 2025

Ecma International approves ECMAScript 2025: What’s new?

Building Together: PRFT Colleagues Volunteer with Atlanta Habitat for Humanity

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

CVE-2025-53310 – Funnnny HidePost CSRF Reflected XSS

⚡ Weekly Recap: Chrome 0-Day, 7.3 Tbps DDoS, MFA Bypass Tricks, Banking Trojan and More

China-linked Salt Typhoon Exploits Critical Cisco Vulnerability to Target Canadian Telecom

Meet Rowboat: An Open-Source IDE for Building Complex Multi-Agent Systems

AIOps Corner podcast series engages in the art of the possible for your AIOps journey

New Google Labs experiments help you learn new languages in ‘bite-sized’ lessons

CVE-2025-4481 – SourceCodester Apartment Visitor Management System SQL Injection Vulnerability

U.S. Banking Associations Petition SEC to Rescind Cyber Breach Reporting Mandate

CVE-2025-44835 – D-Link DIR-816 Command Injection Vulnerability

CVE-2025-48865 – Fabio HTTP Hop-by-Hop Header Manipulation Vulnerability

CVE-2025-46579 – GoldenDB DDE Injection Vulnerability

CVE-2025-53310 – Funnnny HidePost CSRF Reflected XSS

Related Posts