CVE-2025-63229 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The Mozart FM Transmitter web management interface on version WEBMOZZI-00287, contains a reflected Cross-Site Scripting (XSS) vulnerability in the /main0.php en…
Medium CVSS: 5.4

CVE-2025-63229

The Mozart FM Transmitter web management interface on version WEBMOZZI-00287, contains a reflected Cross-Site Scripting (XSS) vulnerability in the /main0.php endpoint. By injecting a malicious JavaScript payload into the ?m= query parameter, an attacker can execute arbitrary code in the victim's browser, potentially stealing sensitive information, hijacking sessions, or performing unauthorized actions.
Vendor
Dbbroadcast
Product
Mozart Next 100 Firmware
CWE
CWE-79
Yayın Tarihi
2025-11-18 22:15:51
Güncelleme
2025-12-06 00:18:19
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-79 Mozart Next 100 Firmware MEDIUM Dbbroadcast 2025

Referanslar

https://github.com/shiky8/my--cve-vulnerability-research/tree/main/CVE-2025-63229_Mozart_FM_Transmitter_xss https://www.dbbroadcast.com/