Vulnerabilities

CVE-2025-15374 - EyouCMS Ask Module Ask.php cross site scripting

2025-12-31 0 views admin

CVE ID : CVE-2025-15374 Published : Dec. 31, 2025, 4:32 a.m. | 25 minutes ago Description : A vulnerability was detected in EyouCMS up to 1.7.7. The affected element is an unknown function of the file application/home/model/Ask.php of the component Ask Module. Performing manipulation of the argument content results in cross site scripting. The attack can be initiated remotely. The exploit is now public and may be used. The vendor is

CVE Details

CVE ID

CVE-2025-15374

Published

Dec. 31, 2025

Affected Product: php

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-15374php

CVE-2025-15374 - EyouCMS Ask Module Ask.php cross site scripting

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2025-49358 - WordPress Content Fetcher plugin <= 1.1 - cross site scripting (xss) vulnerability

CVE-2025-62135 - WordPress Responsive Block Control plugin <= 1.2.9 - cross site scripting (xss) ...

CVE-2025-62991 - WordPress Minamaze theme <= 1.10.1 - cross site scripting (xss) vulnerability

CVE-2025-62757 - WordPress WebMan Amplifier plugin <= 1.5.12 - cross site scripting (xss) vulnera...

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting