CVE-2025-29710

Medium CVSS: 6.1

SourceCodester Company Website CMS 1.0 is vulnerable to Cross Site Scripting (XSS) via /dashboard/Services.

Vendor

Product

CWE

Yayın Tarihi

2025-04-16 21:15:47

Güncelleme

2025-04-23 16:34:04

Source Identifier

cve@mitre.org

KEV Date Added

CWE-79 Company Website Cms MEDIUM Torrahclef 2025

https://github.com/fupanc-w1n/fupanc/blob/main/php/CVE-2025-29710.md https://github.com/fupanc-w1n/fupanc/blob/main/php/Company%20Website%20CMS3.md https://github.com/fupanc-w1n/fupanc/blob/main/php/Company%20Website%20CMS3.md

Medium

CVE-2025-13561

A vulnerability was determined in SourceCodester Company Website CMS 1.0. This vulnerability affects unknown code of the…

Medium

CVE-2025-13560

A vulnerability was found in SourceCodester Company Website CMS 1.0. This affects an unknown part of the file /admin/res…

Critical

CVE-2025-29708

SourceCodester Company Website CMS 1.0 contains a file upload vulnerability via the "Create Services" file /dashboard/Se…

Critical

CVE-2025-29709

SourceCodester Company Website CMS 1.0 has a File upload vulnerability via the "Create portfolio" file /dashboard/portfo…