PT-2025-39796 · Langleyfcu · Langleyfcu Online Banking System
Lianhaorui
·
Published
2025-09-28
·
Updated
2025-09-29
·
CVE-2025-11125
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
langleyfcu Online Banking System versions prior to 57437e6400ce0ae240e692c24e6346b8d0c17d7a
Description
A cross site scripting issue exists in the Error Message Handler component of langleyfcu Online Banking System. The issue is related to manipulation of the
Error argument within the /connection error.php file. Remote exploitation is possible, and the exploit has been made public.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
XSS
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Langleyfcu Online Banking System