Cross Site Scripting Vulnerability in SourceCodester Company Website CMS
CVE-2025-29710
Currently unrated
Summary
The SourceCodester Company Website CMS version 1.0 is vulnerable to Cross Site Scripting (XSS) attacks through the /dashboard/Services endpoint. An attacker can exploit this vulnerability to inject malicious scripts, potentially compromising user data and allowing unauthorized access to sensitive information. It is crucial for users of this CMS to implement security measures and apply patches promptly to mitigate this security risk.
References
Timeline
Vulnerability published