Cross-Site Scripting in nuz007 smsboom by nuz007
CVE-2025-10945
5.1MEDIUM
What is CVE-2025-10945?
A security flaw in the nuz007 smsboom application allows for cross-site scripting (XSS) attacks through the manipulation of an argument in the d.php file. This vulnerability enables attackers to execute arbitrary scripts in users' browsers, potentially compromising sensitive data or session tokens. The threat can be exploited remotely, making it crucial for users and administrators of nuz007 smsboom to implement immediate security measures to mitigate risks associated with this vulnerability.
Affected Version(s)
smsboom 01b2f35bbbc23f3e0f60f38ca0e3d1b286f8d674