CVE-2025-5990 - Crafty Controller Stored XSS Vulnerability

byMaloy Roy Orko -June 15, 2025

CVE ID : CVE-2025-5990
Published : June 15, 2025, 6:15 p.m. | 55 minutes ago
Description : An input neutralization vulnerability in the Server Name form and API Key form components of Crafty Controller allows a remote, authenticated attacker to perform stored XSS via malicious form input.
Severity: 7.6 | HIGH

Tags Latest Vulnerabilities

CVE-2025-5990 - Crafty Controller Stored XSS Vulnerability

Post a Comment

CVE-2025-0842 | Library-Card-System | SQL Injection Admin Login Bypass In admin.php | Found By Maloy Roy Orko

Categories

Main Tags

Contact Form

Latest Posts

Popular Posts

CVE-2025-0842 | Library-Card-System | SQL Injection Admin Login Bypass In admin.php | Found By Maloy Roy Orko

CVE-2025-0722 | Image_Gallery | Add Gallery- admin/gallery.php | Unrestricted File Upload | Found By Maloy Roy Orko

Needyamin | Library-Card-System 1.0 | card.php?id= SQL Injection | Found By Maloy Roy Orko

Contact Form