Vulnerabilities

CVE-2025-15452 - xnx3 wangmarket Backend Variable Search variableList.do variableList cross site

2026-01-05 0 views admin

CVE ID : CVE-2025-15452 Published : Jan. 5, 2026, 2:02 a.m. | 53 minutes ago Description : A weakness has been identified in xnx3 wangmarket up to 4.9. This affects the function variableList of the file /admin/system/variableList.do of the component Backend Variable Search. Executing a manipulation of the argument Description can lead to cross site scripting. The attack may be launched remotely. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2025-15452

Published

Jan. 5, 2026

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-15452

CVE-2025-15452 - xnx3 wangmarket Backend Variable Search variableList.do variableList cross site

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2025-69335 - WordPress Team Showcase plugin <= 2.9 - cross site scripting (xss) vulnerability

CVE-2025-69334 - WordPress Wishlist for WooCommerce plugin <= 3.3.0 - cross site scripting (xss)

Essential Guide: CVE-2025-69352 - WordPress The Events Calendar plugin <= 6.15.12.2 - broken access control vulner...

CVE-2025-69354 - WordPress Better Business Reviews plugin <= 0.1.1 - broken access control vulner

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting