CVE-2025-0220 – Trimble SPS851 Ethernet Configuration Menu Cross-Site Scripting Vulnerability

1月 5, 2025
2:17 pm

CVE ID : CVE-2025-0220

Published : Jan. 5, 2025, 1:15 p.m. | 1 hour, 2 minutes ago

Description : A vulnerability, which was classified as problematic, was found in Trimble SPS851 488.01. This affects an unknown part of the component Ethernet Configuration Menu. The manipulation of the argument Hostname leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-0220 – Trimble SPS851 Ethernet Configuration Menu Cross-Site Scripting Vulnerability

Elvescore.io

Recent Posts

CVE-2024-12158 – MailChimp, GetResponse and ActiveCampaign Intergrations Plugin Unauthenticated Data Deletion

CVE-2024-12159 – Google Ads WordPress Plugin Information Exposure

CVE-2024-12170 – ViewMedica for WordPress CSRF Vulnerability

CVE-2024-12176 – WordLift Schema Vulnerability: Unauthenticated Plugin Settings Update

CVE-2024-12207 – “WordPress Toggles Shortcode and Widget Stored XSS”

CVE-2024-12208 – WordPress Backup Plugin CSRF

CVE-2025-0220 – Trimble SPS851 Ethernet Configuration Menu Cross-Site Scripting Vulnerability

CVE-2025-0220 – Trimble SPS851 Ethernet Configuration Menu Cross-Site Scripting Vulnerability