7 matches found
CVE-2025-46703
Improper Encoding or Escaping of Output vulnerability in Hallo Welt! GmbH BlueSpice Extension:AtMentions allows Cross-Site Scripting XSS. This issue affects BlueSpice: from 5 through 5.1.1...
CVE-2025-46703
Improper Encoding or Escaping of Output vulnerability in Hallo Welt! GmbH BlueSpice Extension:AtMentions allows Cross-Site Scripting XSS. This issue affects BlueSpice: from 5 through 5.1.1...
CVE-2025-46703
Improper Encoding or Escaping of Output vulnerability in Hallo Welt! GmbH BlueSpice Extension:AtMentions allows Cross-Site Scripting XSS. This issue affects BlueSpice: from 5 through 5.1.1...
CVE-2025-46703 Potential XSS in Extension:AtMentions
Improper Encoding or Escaping of Output vulnerability in Hallo Welt! GmbH BlueSpice Extension:AtMentions allows Cross-Site Scripting XSS. This issue affects BlueSpice: from 5 through 5.1.1...
CVE-2025-46703 Potential XSS in Extension:AtMentions
Improper Encoding or Escaping of Output vulnerability in Hallo Welt! GmbH BlueSpice Extension:AtMentions allows Cross-Site Scripting XSS. This issue affects BlueSpice: from 5 through 5.1.1...
CVE-2025-46703
The CVE-2025-46703 entry describes an XSS vulnerability in Hallo Welt! GmbH BlueSpice, specifically in the AtMentions extension. The root cause is improper encoding or escaping of output in the AtMentions feature, which can allow cross-site scripting. Affected products/versions are BlueSpice 5 th...
PT-2025-38532
Name of the Vulnerable Software and Affected Versions BlueSpice versions 5 through 5.1.1 Description An improper encoding or escaping of output issue exists in the AtMentions extension of BlueSpice, which can lead to Cross-Site Scripting XSS. Recommendations Update BlueSpice to a version later th...