CVE-2025-10370 | MiczFlor RPi-Jukebox-RFID up to 2.8.0 /htdocs/userScripts.php Custom script cross site scripting

A vulnerability classified as problematic has been found in MiczFlor RPi-Jukebox-RFID up to 2.8.0. This vulnerability affects unknown code of the file /htdocs/userScripts.php. The manipulation of the argument Custom script leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-10370. The attack is possible to be carried out remotely. Moreover, an exploit is present.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More