Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/11/13 1:0 a.m.5 views

CVE-2025-60646

A stored cross-site scripting XSS in the Business Line Management module of Xxl-api v1.3.0 attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...

6.1CVSS5.7AI score0.00193EPSS
Exploits1References1
NVD
NVD
added 2025/11/12 7:15 p.m.6 views

CVE-2025-60646

A stored cross-site scripting XSS in the Business Line Management module of Xxl-api v1.3.0 attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...

6.1CVSS0.00193EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/11/12 12:0 a.m.3 views

CVE-2025-60646

A stored cross-site scripting XSS in the Business Line Management module of Xxl-api v1.3.0 attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...

5.3AI score0.00193EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/12 12:0 a.m.12 views

CVE-2025-60646

A stored cross-site scripting XSS in the Business Line Management module of Xxl-api v1.3.0 attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...

0.00193EPSS
Exploits1References2
CVE
CVE
added 2025/11/12 12:0 a.m.13 views

CVE-2025-60646

CVE-2025-60646 is a stored cross-site scripting (XSS) vulnerability in the Business Line Management module of Xxl-api v1.3.0. The issue arises from user-controllable input in the Name parameter, enabling an attacker to inject arbitrary web scripts or HTML. Affected software: Xxl-api (Business Lin...

6.1CVSS5.3AI score0.00193EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/11/12 12:0 a.m.8 views

PT-2025-46688

Name of the Vulnerable Software and Affected Versions Xxl-api version 1.3.0 Description A stored cross-site scripting XSS issue exists in the Business Line Management module. This allows attackers to execute arbitrary web scripts or HTML by injecting a crafted payload into the Name parameter...

6.1CVSS5.9AI score0.00193EPSS
Exploits1References5
Rows per page
Query Builder