Vulnerabilities

CVE-2025-14691 - Mayan EDMS authentication cross site scripting

2025-12-15 0 views admin
CVE-2025-14691 - Mayan EDMS authentication cross site scripting

CVE ID : CVE-2025-14691 Published : Dec. 14, 2025, 11:15 p.m. | 2 hours ago Description : A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is

CVE Details

Published
Dec. 14, 2025

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-14691

More from Vulnerabilities

CVE-2025-14710 - FantasticLBP Hotels Server OrderList.php sql injection

CVE-2025-14710 - FantasticLBP Hotels Server OrderList.php sql injection

2025-12-15 0
CVE-2025-14711 - FantasticLBP Hotels Server hotelList.php sql injection

CVE-2025-14711 - FantasticLBP Hotels Server hotelList.php sql injection

2025-12-15 0
CVE-2025-12684 - URL Shortify < 1.11.3 - Reflected XSS

CVE-2025-12684 - URL Shortify < 1.11.3 - Reflected XSS

2025-12-15 0
CVE-2025-11363 - Royal Elementor Addons and Templates < 1.7.1037 - Unauthenticated Media File Upload

CVE-2025-11363 - Royal Elementor Addons and Templates < 1.7.1037 - Unauthenticated Media File Upload

2025-12-15 0

Trending

1

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

2025-10-27 • 189 views
2

CVE-2025-43939: Dell Unity OS Command Injection (High)

2025-10-30 • 148 views
3

Google disputes false claims of massive Gmail data breach

2025-10-30 • 130 views
4

Microsoft: DNS outage impacts Azure and Microsoft 365 services

2025-10-30 • 88 views
5

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting

2025-11-25 • 81 views