CVE-2021-25790

EPSS 0.28% · P51 Updated Feb 25, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-25790

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple stored cross site scripting (XSS) vulnerabilities in the "Register" module of House Rental and Property Listing 1.0 allows authenticated attackers to execute arbitrary web scripts or HTML via crafted payloads in all text fields except for Phone Number and Alternate Phone Number.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

House Rental and Property Listing 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

House Rental and Property Listing是一个由PHP、JavaScript、Bootstrap、CSS 和 MySQL（数据库）开发的一套系统。可方便用户找到合适的出租房屋或房产。 House Rental and Property Listing 1.0存在跨站脚本漏洞，该漏洞允许经过身份验证的攻击者通过“注册”模块中的除电话号码和备用电话号码之外的所有文本字段中的精心设计的有效负载执行任意 Web 脚本或 HTML。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2021-25790

#	POC Description	Source Link	Shenlong Link
1	CVE-2021-25790-Multiple-Stored-XSS : Multiple Stored XSS in House Rental and Property Listing	https://github.com/MrCraniums/CVE-2021-25790-Multiple-Stored-XSS	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2021-25790

请登录查看更多情报信息。

https://www.exploit-db.com/exploits/49352x_refsource_MISC
Free Source Code Projects and Tutorials - sourcecodester.comx_refsource_MISC
https://www.sourcecodester.com/php/14649/house-rental-and-property-listing-php-full-source-code.htmlx_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2021-25790

Same Patch Batch · n/a · 2021-07-23 · 16 CVEs total

CVE-2021-23412	8.1 HIGH	Command Injection
CVE-2021-3169		Jumpserver 注入漏洞
CVE-2020-14032		ASRock 4x4 BOX-R1000 安全漏洞
CVE-2021-26799		Omeka Classic 跨站脚本漏洞
CVE-2021-25207		SourceCodester E-Commerce Website 代码问题漏洞
CVE-2021-25208		SourceCodester Travel Management System 代码问题漏洞
CVE-2021-25206		SourceCodester Responsive Ordering System 代码问题漏洞
CVE-2021-25203		Victor CMS 代码问题漏洞
CVE-2021-25204		SourceCodester E-Commerce Website 跨站脚本漏洞
CVE-2021-25201		Forma Learning Management System SQL注入漏洞
CVE-2021-3159		Landray EKP 跨站脚本漏洞
CVE-2021-25791		Online Doctor Appointment System 跨站脚本漏洞
CVE-2020-20741		Beckhoff Automation GmbH & Co. KG CX9020 安全漏洞
CVE-2021-25808		Bludit 代码注入漏洞
CVE-2021-25809		UCMS 信息泄露漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2021-25790

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-25790

I. Basic Information for CVE-2021-25790

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2021-25790

III. Intelligence Information for CVE-2021-25790

Same Patch Batch · n/a · 2021-07-23 · 16 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2021-25790

Leave a comment