CVE-2025-10366 | MiczFlor RPi-Jukebox-RFID up to 2.8.0 inc.setWlanIpMail.php Email address cross site scripting

A vulnerability identified as problematic has been detected in MiczFlor RPi-Jukebox-RFID up to 2.8.0. Affected is an unknown function of the file /htdocs/inc.setWlanIpMail.php. This manipulation of the argument Email address causes cross site scripting.

This vulnerability appears as CVE-2025-10366. The attack may be initiated remotely. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More