CVE-2025-53923 – Emlog Cross-Site Scripting Vulnerability

July 16, 2025

CVE ID : CVE-2025-53923

Published : July 16, 2025, 2:15 p.m. | 3 hours, 59 minutes ago

Description : Emlog is an open source website building system. A cross-site scripting (XSS) vulnerability in emlog up to and including pro-2.5.17 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter. Due to lack of sanitization it is possible to inject HTML/JS code into keyword parameter. If one persuades an user into clicking into prepared link it is possible to execute any JS code in admin’s browser. As of time of publication, no known patched versions exist.

Severity: 8.2 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-53935 – WeGIA Reflected Cross-Site Scripting (XSS)

Next Article CVE-2025-40776 – BIND Named Cache-Poisoning Vulnerability

Highlights

CVE-2025-6090 – H3C GR-5400AX Critical Buffer Overflow in UpdateWanparamsMulti/UpdateIpv6params

June 15, 2025

CVE ID : CVE-2025-6090

Published : June 15, 2025, 3:15 p.m. | 10 hours, 7 minutes ago

Description : A vulnerability was found in H3C GR-5400AX V100R009L50 and classified as critical. This issue affects the function UpdateWanparamsMulti/UpdateIpv6params of the file /routing/goform/aspForm. The manipulation of the argument param leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor confirms the existence of this issue. Because they assess the risk as low, they do not have immediate plans for remediation.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The state of DevOps and AI: Not just hype

A Breeze Of Inspiration In September (2025 Wallpapers Edition)

10 Top Generative AI Development Companies for Enterprise Node.js Projects

Prompting Is A Design Act: How To Brief, Guide And Iterate With AI

Look out, Meta Ray-Bans! These AI glasses just raised over $1M in pre-orders in 3 days

Samsung ‘Galaxy Glasses’ powered by Android XR are reportedly on track to be unveiled this month

The M4 iPad Pro is discounted $100 as a last-minute Labor Day deal

Distribution Release: Linux From Scratch 12.4

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

August report 2025

Fake News Detection using Python Machine Learning (ML)

Installing Proxmox on a Raspberry Pi to run Virtual Machines on it

Installing Proxmox on a Raspberry Pi to run Virtual Machines on it

Download Transcribe! for Windows

Microsoft Fixes CertificateServicesClient (CertEnroll) Error in Windows 11

CVE-2025-53923 – Emlog Cross-Site Scripting Vulnerability

Hacker suspected of trying to cheat his way into university is arrested in Spain

ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics

From Scroll to Sale: Designing a Creator-Led Shopping Journey

Lenovo Legion Go 2 vs Legion Go — How Do These Gaming Handhelds Compare Based on Rumored Specs?

CVE-2025-4881 – iSourcecode Restaurant Management System SQL Injection

The 10+ Best AI & Pro Web Design Tools for 2025

CVE-2025-6090 – H3C GR-5400AX Critical Buffer Overflow in UpdateWanparamsMulti/UpdateIpv6params

Hazy Hawk Exploits DNS Records to Hijack CDC, Corporate Domains for Malware Delivery

Rilasciata HeliumOS 10: Distribuzione GNU/Linux Atomica e Immutabile basata su AlmaLinux

Mapollage – photo kml generator for Google Earth

CVE-2025-53923 – Emlog Cross-Site Scripting Vulnerability

Related Posts