CVE-2025-70458

Medium CVSS: 5.4

A DOM-based Cross-Site Scripting (XSS) vulnerability exists in the DomainCheckerApp class within domain/script.js of Sourcecodester Domain Availability Checker v1.0. The vulnerability occurs because the application improperly handles user-supplied data in the createResultElement method by using the unsafe innerHTML property to render domain search results.

Vendor

Remyandrade

Product

Domain Availability Checker

CWE

CWE-79

Yayın Tarihi

2026-01-23 22:16:15

Güncelleme

2026-01-30 17:59:09

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-79 Domain Availability Checker MEDIUM Remyandrade 2026

Referanslar

https://github.com/ismaildawoodjee/vulnerability-research/security/advisories/GHSA-chm7-vgf7-6f9p https://www.sourcecodester.com/php/18500/domain-availability-checker-using-php-and-javascript-source-code.html

Benzer Kayıtlar

Medium

CVE-2026-3695

A vulnerability has been found in SourceCodester Modern Image Gallery App 1.0. Impacted is an unknown function of the fi…

Medium

CVE-2026-3302

A weakness has been identified in SourceCodester Doctor Appointment System 1.0. Affected by this issue is some unknown f…

Medium

CVE-2026-3163

A vulnerability has been found in SourceCodester Website Link Extractor 1.0. This vulnerability affects the function fil…

Medium

CVE-2026-3070

A vulnerability was detected in SourceCodester Modern Image Gallery App 1.0. Affected by this vulnerability is an unknow…

Critical

CVE-2025-70457

A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Modern Image Gallery App v1.0 within the gallery/up…

Medium

CVE-2026-0580

A vulnerability was found in SourceCodester API Key Manager App 1.0. Affected by this vulnerability is an unknown functi…