CVE-2025-45879 – Miliaris Amigdala XSS Vulnerability

June 17, 2025

CVE ID : CVE-2025-45879

Published : June 17, 2025, 4:15 p.m. | 2 hours, 12 minutes ago

Description : A cross-site scripting (XSS) vulnerability in the e-mail manager function of Miliaris Amigdala v2.2.6 allows attackers to execute arbitrary HTML in the context of a user’s browser via a crafted payload.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-45878 – Miliaris Amigdala XSS

Next Article CVE-2025-6199 – GdkPixbuf GIF LZW Buffer Leak Vulnerability

Highlights

CVE-2025-5023 – Mitsubishi Electric Corporation EcoGuideTAB Photovoltaic System Monitor Hard-coded Credentials Backdoor

July 10, 2025

CVE ID : CVE-2025-5023

Published : July 10, 2025, 9:15 a.m. | 4 hours, 51 minutes ago

Description : Use of Hard-coded Credentials vulnerability in Mitsubishi Electric Corporation photovoltaic system monitor “EcoGuideTAB” PV-DR004J all versions and PV-DR004JA all versions allows an attacker within the Wi-Fi communication range between the units of the product (measurement unit and display unit) to disclose information such as generated power and electricity sold back to the grid stored in the product, tamper with or destroy stored or configured information in the product, or cause a Denial-of-Service (DoS) condition on the product, by using hardcoded user ID and password common to the product series obtained by exploiting CVE-2025-5022. However, the product is not affected by this vulnerability when it remains unused for a certain period of time (default: 5 minutes) and enters the power-saving mode with the display unit’s LCD screen turned off. The affected products discontinued in 2015, support ended in 2020.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

CVE-2025-45879 – Miliaris Amigdala XSS Vulnerability

CVE-2025-44658 – Netgear RAX30 PHP-FPM Misconfigured Extension Bypass Vulnerability

CVE-2025-7393 – Drupal Mail Login Authentication Bypass

CVE-2025-3201 – WordPress Contact Form Builder Stored Cross-Site Scripting Vulnerability

SaaS product QuickHub

Windows 11 KB5055629 adds Android Send File to the Start menu, improves File Explorer

Minimal CSS-only blurry image placeholders

CVE-2025-5023 – Mitsubishi Electric Corporation EcoGuideTAB Photovoltaic System Monitor Hard-coded Credentials Backdoor

Stratbook – strategies, tips, and tricks

CVE-2025-4706 – Projectworlds Online Examination System SQL Injection Vulnerability

OpenAI Introduces the Evals API: Streamlined Model Evaluation for Developers

CVE-2025-45879 – Miliaris Amigdala XSS Vulnerability

Related Posts