Medium severity6.1NVD Advisory· Published Apr 7, 2025· Updated Jun 17, 2026
CVE-2025-29594
CVE-2025-29594
Description
A vulnerability exists in the errorpage.php file of the CS2-WeaponPaints-Website v2.1.7 where user-controlled input is not adequately validated before being processed. Specifically, the $_GET['errorcode'] parameter can be manipulated to access unauthorized error codes, leading to Cross-Site Scripting (XSS) attacks and information disclosure.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =2.1.7
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.