Filtered by vendor Davidstutz Subscriptions
Filtered by product Bootstrap Multiselect Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2025-47204 1 Davidstutz 1 Bootstrap Multiselect 2025-07-09 6.1 Medium
An issue was discovered in post.php in bootstrap-multiselect (aka Bootstrap Multiselect) 1.1.2. A PHP script in the source code echoes arbitrary POST data. If a developer adopts this structure wholesale in a live application, it could create a Reflective Cross-Site Scripting (XSS) vulnerability exploitable through Cross-Site Request Forgery (CSRF).