CVE-2025-10331 | cdevroe unmark up to 1.9.3 Marks.php Title cross site scripting

A vulnerability was found in cdevroe unmark up to 1.9.3. It has been declared as problematic. This issue affects some unknown processing of the file /application/controllers/Marks.php. Such manipulation of the argument Title leads to cross site scripting.

This vulnerability is documented as CVE-2025-10331. The attack can be executed remotely. Additionally, an exploit exists.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More