5 matches found
CVE-2025-58114
Improper Input Validation vulnerability in Hallo Welt! GmbH BlueSpice Extension:CognitiveProcessDesigner allows Cross-Site Scripting XSS.This issue affects BlueSpice: from 5 through 5.1.1...
CVE-2025-57880
Improper Encoding or Escaping of Output vulnerability in Hallo Welt! GmbH BlueSpice Extension:BlueSpiceWhoIsOnline allows Cross-Site Scripting XSS. This issue affects BlueSpice: from 5 through 5.1.1...
CVE-2025-58114
This CVE affects BlueSpice (Hallo Welt! GmbH) with the CognitiveProcessDesigner extension. The vulnerability is an improper input validation that enables Cross-Site Scripting (XSS) and affects BlueSpice versions 5 through 5.1.1. Documented details indicate the root cause is input validation in Ex...
CVE-2025-57880
The CVE-2025-57880 entry concerns an XSS vulnerability in Hallo Welt! GmbH BlueSpice, specifically the BlueSpiceWhoIsOnline extension . Affected are BlueSpice versions 5 through 5.1.1 where improper encoding/escaping of output may allow script execution. The root cause is an output encoding flaw ...
CVE-2025-57880 Potential XSS in Extension:BlueSpiceWhoIsOnline
Improper Encoding or Escaping of Output vulnerability in Hallo Welt! GmbH BlueSpice Extension:BlueSpiceWhoIsOnline allows Cross-Site Scripting XSS. This issue affects BlueSpice: from 5 through 5.1.1...