CVE-2025-7748 – ZCMS Cross Site Scripting (XSS) Vulnerability in Create Article Page

July 17, 2025

CVE ID : CVE-2025-7748

Published : July 17, 2025, 6:15 p.m. | 21 minutes ago

Description : A vulnerability classified as problematic was found in ZCMS 3.6.0. This vulnerability affects unknown code of the component Create Article Page. The manipulation of the argument Title leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-7747 – Tenda POST Request Handler Buffer Overflow Vulnerability

Next Article CVE-2025-53638 – Solady Silent Failure in Proxy Initialization Vulnerability

This week in AI dev tools: Slack’s enterprise search, Claude Code’s analytics dashboard, and more (July 18, 2025)

Report: 71% of tech leaders won’t hire devs without AI skills

Slack’s AI search now works across an organization’s entire knowledge base

In-House vs Outsourcing for React.js Development: Understand What Is Best for Your Enterprise

Elon Musk teasing a Grok male companion inspired by “50 Shades of Grey” — beating Microsoft’s AI CEO at his own game

My favorite RTS castle builder from 2002 just got a brilliant remaster — and it’s only $16 on PC for a limited time

Razer Core X V2 vs. Razer Core X V1 — There’s only one eGPU you want in 2025

4 features on Windows 11 exclusive to Europe that Microsoft should make global

The details of TC39’s last meeting

The details of TC39’s last meeting

Conditional Collection Skipping with Laravel’s skipWhile Method

Deploying Laravel Applications on Laravel Cloud With MongoDB Atlas

Elon Musk teasing a Grok male companion inspired by “50 Shades of Grey” — beating Microsoft’s AI CEO at his own game

Elon Musk teasing a Grok male companion inspired by “50 Shades of Grey” — beating Microsoft’s AI CEO at his own game

My favorite RTS castle builder from 2002 just got a brilliant remaster — and it’s only $16 on PC for a limited time

Razer Core X V2 vs. Razer Core X V1 — There’s only one eGPU you want in 2025

CVE-2025-7748 – ZCMS Cross Site Scripting (XSS) Vulnerability in Create Article Page

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

كود خصم سكوات وولف 2025

Hackers Use Leaked Shellter Tool License to Spread Lumma Stealer and SectopRAT Malware

CVE-2025-44073 – SeaCMS SQL Injection Vulnerability

CVE-2025-4638 – PCL Zlib Inftrees Pointer Arithmetic Vulnerability

Linux Crash Reporting Flaws (CVE-2025-5054, 4598) Expose Password Hashes

CVE-2025-45887 – Yifang CMS SSRF Vulnerability

Figma’s new grid — you must understand CSS Grid as a designer

CVE-2025-5208 – SourceCodester Online Hospital Management System SQL Injection Vulnerability

CVE-2025-7748 – ZCMS Cross Site Scripting (XSS) Vulnerability in Create Article Page

Related Posts