Vulnerabilities

CVE-2021-47737 - CSZ CMS 1.2.7 HTML Injection Vulnerability via Member Dashboard

2025-12-23 0 views admin
CVE-2021-47737 - CSZ CMS 1.2.7 HTML Injection Vulnerability via Member Dashboard

CVE ID : CVE-2021-47737 Published : Dec. 23, 2025, 8:15 p.m. | 32 minutes ago Description : CSZ CMS 1.2.7 contains an HTML injection vulnerability that allows authenticated users to insert malicious hyperlinks in message titles. Attackers can craft POST requests to the member messaging system with HTML-based links to potentially conduct phishing or social engineering attacks. Severity: 5.4 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

Severity
MEDIUM
Published
Dec. 23, 2025

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2021-47737medium

More from Vulnerabilities

CVE-2025-15077 - itsourcecode Student Management System form137.php sql injection

CVE-2025-15077 - itsourcecode Student Management System form137.php sql injection

2025-12-25 0
CVE-2025-15078 - itsourcecode Student Management System list_report.php sql injection

CVE-2025-15078 - itsourcecode Student Management System list_report.php sql injection

2025-12-25 0
CVE-2025-32095 - Pexip Infinity Signalling Denial of Service

CVE-2025-32095 - Pexip Infinity Signalling Denial of Service

2025-12-25 0
CVE-2025-59683 - Pexip Infinity Improper Access Control Denial of Service

CVE-2025-59683 - Pexip Infinity Improper Access Control Denial of Service

2025-12-25 0

Trending

1

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

2025-10-27 • 189 views
2

CVE-2025-43939: Dell Unity OS Command Injection (High)

2025-10-30 • 148 views
3

Google disputes false claims of massive Gmail data breach

2025-10-30 • 130 views
4

Microsoft: DNS outage impacts Azure and Microsoft 365 services

2025-10-30 • 88 views
5

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting

2025-11-25 • 81 views