CVE-2025-51487 Information
Aug 20, 2025
cve
Description
A stored cross-site scripting (XSS) vulnerability in the Create Article function of MoonShine v3.12.3 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Link parameter.
Reference
https://github.com/GiacoLenzo2109/MoonShine_Software_PoCs https://github.com/moonshine-software/moonshine
Related CNNVD
CNNVD-202508-2104 (Published: 2025-08-19)
Share on: