CVE-2025-2610
HIGH EXPLOITED NUCLEIMagnusBilling Alarm Module - Cross-Site Scripting
Title source: nucleiExploitation Summary
CVE-2025-2610 has been observed exploited in the wild (reported by VulnCheck KEV). A Nuclei detection template is also available.
Description
Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling (Alarm Module modules) allows authenticated stored cross-site scripting. This vulnerability is associated with program files protected/components/MagnusLog.Php. This issue affects MagnusBilling: through 7.3.0.
Nuclei Templates (1)
MagnusBilling Alarm Module - Cross-Site Scripting
HIGHVERIFIEDby DhiyaneshDK
Shodan:
http.html:"magnusbilling"
FOFA:
body="magnusbilling"
References (3)
Core 3
Core References
Exploit, Third Party Advisory
https://chocapikk.com/posts/2025/magnusbilling/
Patch
https://github.com/magnussolution/magnusbilling7/commit/f0f083c76157e31149ae58342342fb1bf1629e22
Third Party Advisory
https://vulncheck.com/advisories/magnusbilling-alarm-xss
Scores
CVSS v3
7.6
EPSS
0.0083
EPSS Percentile
52.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
VulnCheck KEV
2025-03-21
CWE
CWE-79
Status
published
Products (1)
magnussolution/magnusbilling
< 7.3.0
Published
Mar 21, 2025
Tracked Since
Feb 18, 2026