CVE-2025-8751

A vulnerability was found in Protected Total WebShield Extension up to 3.2.0 on Chrome. It has been classified as problematic. This affects an unknown part of the component Block Page. The manipulation of the argument Category leads to cross site scripting. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS

No CVSS.

References

Link	Resource
https://news.fmisec.com/self-html-injection-in-total-webshield-chrome-extension
https://news.fmisec.com/self-html-injection-in-total-webshield-chrome-extension#heading-vulnerability-details
https://vuldb.com/?ctiid.319245
https://vuldb.com/?id.319245
https://vuldb.com/?submit.623677
https://news.fmisec.com/self-html-injection-in-total-webshield-chrome-extension

Configurations

No configuration.

History

11 Aug 2025, 17:15

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~3.1~~	v2 : unknown v3 : unknown
CWE	CWE-94 CWE-79

09 Aug 2025, 08:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-09 08:15

Updated : 2025-08-11 17:15

NVD link : CVE-2025-8751

Mitre link : CVE-2025-8751

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2025-8751

Attach tags to `CVE-2025-8751`