CVE-2025-51488 Information
Aug 20, 2025
cve
Description
A stored cross-site scripting (XSS) vulnerability in the Create Admin function of MoonShine v3.12.3 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter.
Reference
https://github.com/GiacoLenzo2109/MoonShine_Software_PoCs https://github.com/moonshine-software/moonshine
Related CNNVD
CNNVD-202508-2101 (Published: 2025-08-19)
Share on: