CVE-2025-41356 in Anon Proxy Serverinfo

Zusammenfassung (Englisch)

Reflected Cross-Site Scripting (XSS) vulnerability in Anon Proxy Server v0.104. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending him/her a malicious URL. This vulnerability can be exploited to steal sensitive user data, such as session cookies, or to perform actions on behalf of the user. It affects
'host' parameter in '/diagconnect.php'

endpoint.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Zuständig

INCIBE

Reservieren

16.04.2025

Veröffentlichung

31.03.2026

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
354338	Anon Proxy Server URL diagconnect.php Cross Site Scripting	79	Nicht definiert	Nicht definiert	CVE-2025-41356

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

◂ ZurückÜbersichtWeiter ▸

Interested in the pricing of exploits?

See the underground prices here!