CVE-2025-10946 | nuz007 smsboom up to 01b2f35bbbc23f3e0f60f38ca0e3d1b286f8d674 dy.php hm cross site scripting

A vulnerability was found in nuz007 smsboom up to 01b2f35bbbc23f3e0f60f38ca0e3d1b286f8d674. It has been rated as problematic. The affected element is an unknown function of the file dy.php. Performing manipulation of the argument hm results in cross site scripting.

This vulnerability is known as CVE-2025-10946. Remote exploitation of the attack is possible. No exploit is available.

This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided.VulDB Recent EntriesRead More