Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/10/20 10:30 p.m.10 views

CVE-2025-11946

A security flaw has been discovered in LogicalDOC Community Edition up to 9.2.1. This issue affects some unknown processing of the file /frontend.jsp of the component Add Contact Page. Performing manipulation of the argument First Name/Last Name/Company/Address/Phone/Mobile results in cross site...

5.4CVSS3.7AI score0.00329EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/20 12:30 a.m.6 views

EUVD-2025-35010

A security flaw has been discovered in LogicalDOC Community Edition up to 9.2.1. This issue affects some unknown processing of the file /frontend.jsp of the component Add Contact Page. Performing manipulation of the argument First Name/Last Name/Company/Address/Phone/Mobile results in cross site...

5.1CVSS5.1AI score0.00329EPSS
Exploits1References6
NVD
NVD
added 2025/10/19 10:15 p.m.8 views

CVE-2025-11946

A security flaw has been discovered in LogicalDOC Community Edition up to 9.2.1. This issue affects some unknown processing of the file /frontend.jsp of the component Add Contact Page. Performing manipulation of the argument First Name/Last Name/Company/Address/Phone/Mobile results in cross site...

5.4CVSS0.00329EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/10/19 9:32 p.m.14 views

CVE-2025-11946 LogicalDOC Community Edition Add Contact frontend.jsp cross site scripting

A security flaw has been discovered in LogicalDOC Community Edition up to 9.2.1. This issue affects some unknown processing of the file /frontend.jsp of the component Add Contact Page. Performing manipulation of the argument First Name/Last Name/Company/Address/Phone/Mobile results in cross site...

5.1CVSS0.00329EPSS
Exploits1References5
CVE
CVE
added 2025/10/19 9:32 p.m.21 views

CVE-2025-11946

CVE-2025-11946 affects LogicalDOC Community Edition up to 9.2.1. The issue stems from incorrect handling of parameters in /frontend.jsp (Add Contact Page), where manipulation of First Name/Last Name/Company/Address/Phone/Mobile can trigger cross-site scripting. Remote exploitation is possible, an...

5.4CVSS5.3AI score0.00329EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder