CVE-2025-1842
FITSTATS Technologies AthleteMonitoring login.php cross site scripting
A vulnerability classified as problematic was found in FITSTATS Technologies AthleteMonitoring up to 20250302. This vulnerability affects unknown code of the file /login.php. The manipulation of the argument username leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
Productos afectados
FITSTATS Technologies · AthleteMonitoring¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →