CVE-2025-45662

Published
View on NVD ↗
CVSS v3
6.1
MEDIUM
CVSS v2
N/A
Affected
2
PROJECTS

Description

A cross-site scripting (XSS) vulnerability in the component /master/login.php of mpgram-web commit 94baadb allows attackers to execute arbitrary Javascript in the context of a user's browser via a crafted payload.

J4cky1028/vulnerability-research
J4cky1028/vulnerability-research
This repository contains information on the CVEs I found.
GitHubGitHub
shinovon/mpgram-web
shinovon/mpgram-web
Lightweight telegram web client based on MadelineProto
GitHubGitHub
76