2 matches found
CVE-2025-57692
PiranhaCMS 12.0 allows stored XSS in the Text content block of Standard and Standard Archive Pages via /manager/pages, enabling execution of arbitrary JavaScript in another user s browser...
CVE-2025-57692
Affected software: PiranhaCMS 12.0 (self-hosted CMS). Vulnerability: Stored Cross-Site Scripting in the Text content block of Standard and Standard Archive Pages, exploitable via /manager/pages. Root cause (as per sources): Insufficient input filtering allowing stored XSS. Impact: Allows executio...