CVE-2025-29526 – Q4 Inc Investor Relations Platform XSS

April 23, 2025

CVE ID : CVE-2025-29526

Published : April 23, 2025, 5:16 p.m. | 1 hour, 42 minutes ago

Description : A Cross-Site Scripting (XSS) vulnerability in the search function of Q4 Inc Investor Relations Platform v5.147.1.2 allows attackers to execute arbitrary Javascript via injecting a crafted payload into the SearchTerm parameter.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-2760 – GIMP XWD File Parsing Integer Overflow Remote Code Execution Vulnerability

Next Article CVE-2025-28028 – TOTOLINK Buffer Overflow Vulnerability

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

CVE-2025-29526 – Q4 Inc Investor Relations Platform XSS

CVE-2025-44658 – Netgear RAX30 PHP-FPM Misconfigured Extension Bypass Vulnerability

CVE-2025-7393 – Drupal Mail Login Authentication Bypass

Stack years of Microsoft 365 — this deal would have been a bargain in 2013

Git on Linux: A Beginner’s Guide to Version Control and Project Management

Cracking the code: How to wow the acceptance committee at your next tech event

Why SMS two-factor authentication codes aren’t safe and what to use instead

Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks

CVE-2025-31237 – Apple AFP Network Share System Termination Vulnerability

CVE-2025-52818 – Trusty Whistleblowing Missing Authorization Vulnerability

CVE-2025-7546 – GNU Binutils Out-of-Bounds Write Vulnerability

CVE-2025-29526 – Q4 Inc Investor Relations Platform XSS

Related Posts