Skip to main content

Content Management System CVE-2025-7713

HIGH
Cross-site Scripting (XSS) (CWE-79)
2026-01-29 iletisim@usom.gov.tr
7.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

2
Analysis Generated
Mar 12, 2026 - 22:00 vuln.today
CVE Published
Jan 29, 2026 - 15:16 nvd
HIGH 7.5

DescriptionCVE.org

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Global Interactive Design Media Software Inc. Content Management System (CMS) allows XSS Through HTTP Headers.This issue affects Content Management System (CMS): through 21072025.

AnalysisAI

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Global Interactive Design Media Software Inc. Content Management System (CMS) allows XSS Through HTTP Headers.This issue affects Content Management System (CMS): through 21072025. [CVSS 7.5 HIGH]

Technical ContextAI

Classified as CWE-79 (Cross-site Scripting (XSS)). Affects Content Management System. Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Global Interactive Design Media Software Inc. Content Management System (CMS) allows XSS Through HTTP Headers.This issue affects Content Management System (CMS): through 21072025.

RemediationAI

Monitor vendor advisories for a patch. Implement output encoding and Content Security Policy headers. Restrict network access to the affected service where possible.

CVE-2025-29093 HIGH POC
8.2 Jun 04

CVE-2025-29093 is an unauthenticated file upload vulnerability in Motivian Content Management System v41.0.0 that allows

CVE-2025-5631 HIGH POC
7.3 Jun 05

Critical SQL injection vulnerability in the /publicposts.php file of Content Management System and News-Buzz version 1.0

CVE-2025-4311 MEDIUM POC
6.9 May 06

A vulnerability classified as critical was found in itsourcecode Content Management System 1.0. Rated medium severity (C

CVE-2025-4301 MEDIUM POC
6.9 May 06

A vulnerability classified as critical was found in itsourcecode Content Management System 1.0. Rated medium severity (C

CVE-2025-4300 MEDIUM POC
6.9 May 06

A vulnerability classified as critical has been found in itsourcecode Content Management System 1.0. Rated medium severi

CVE-2024-10758 MEDIUM POC
6.9 Nov 04

A vulnerability, which was classified as critical, was found in code-projects/anirbandutta9 Content Management System an

CVE-2025-5633 MEDIUM POC
6.3 Jun 05

A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been rated

CVE-2025-5632 MEDIUM POC
6.3 Jun 05

A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been declar

CVE-2025-29094 MEDIUM POC
6.1 Jun 04

Cross Site Scripting vulnerability in Motivian Content Mangment System v.41.0.0 allows a remote attacker to execute arbi

CVE-2023-31816 MEDIUM POC
6.1 May 22

IT Sourcecode Content Management System Project In PHP and MySQL With Source Code 1.0.0 is vulnerable to Cross Site Scri

CVE-2021-25197 MEDIUM POC
6.1 Jul 22

Cross-site scripting (XSS) vulnerability in SourceCodester Content Management System v 1.0 allows remote attackers to in

CVE-2025-4310 MEDIUM POC
5.1 May 06

A vulnerability classified as critical has been found in itsourcecode Content Management System 1.0. Rated medium severi

Share

CVE-2025-7713 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy