Davidstutz

davidstutz

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Bootstrap Multiselect

bootstrap_multiselect

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-47204 1Davidstutz 1Bootstrap Multiselect Jul 9, 2025 May 13, 2025 N/A· v4 6.1 MEDIUM· v3 N/A· v2 An issue was discovered in post.php in bootstrap-multiselect (aka Bootstrap Multiselect) 1.1.2. A PHP script in the source code echoes arbitrary POST data. If a developer adopts this structure wholesale in a live applica...Show more An issue was discovered in post.php in bootstrap-multiselect (aka Bootstrap Multiselect) 1.1.2. A PHP script in the source code echoes arbitrary POST data. If a developer adopts this structure wholesale in a live application, it could create a Reflective Cross-Site Scripting (XSS) vulnerability exploitable through Cross-Site Request Forgery (CSRF).Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2025-47204

1Davidstutz

1Bootstrap Multiselect

Jul 9, 2025

May 13, 2025

N/A· v4

6.1 MEDIUM· v3

N/A· v2

An issue was discovered in post.php in bootstrap-multiselect (aka Bootstrap Multiselect) 1.1.2. A PHP script in the source code echoes arbitrary POST data. If a developer adopts this structure wholesale in a live application, it could create a Reflective Cross-Site Scripting (XSS) vulnerability exploitable through Cross-Site Request Forgery (CSRF).Show less