CVE-2025-10367 | MiczFlor RPi-Jukebox-RFID up to 2.8.0 /htdocs/cardEdit.php cross site scripting

A vulnerability labeled as problematic has been found in MiczFlor RPi-Jukebox-RFID up to 2.8.0. Affected by this vulnerability is an unknown functionality of the file /htdocs/cardEdit.php. Such manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-10367. The attack may be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More