CVE-2025-54346

High CVSS: 7.6

A Reflected Cross Site Scripting (XSS) vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to hijack user’s browser, capturing sensitive information.

Vendor

Desktopalert

Product

Pingalert Application Server

CWE

CWE-80

Yayın Tarihi

2025-11-14 18:15:48

Güncelleme

2025-11-20 14:59:38

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-80 Pingalert Application Server HIGH Desktopalert 2025

Referanslar

https://desktopalert.net https://desktopalert.net/cve-2025-54346/

Benzer Kayıtlar

Medium

CVE-2025-54341

A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. There are Ha…

Critical

CVE-2025-54347

A Directory Traversal vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6…

High

CVE-2025-54563

An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.1…

High

CVE-2025-54338

An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.1…

Medium

CVE-2025-54348

A Stored Cross Site Scripting (XSS) vulnerability was found in the Application Server of Desktop Alert PingAlert version…

Low

CVE-2025-54559

An issue was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows remote…