CVE-2025-65368
Summary: CVE-2025-65368 affects SparkyFitness v0.15.8.2 and enables Cross Site Scripting (XSS) through user input and LLM output. The vulnerability stems from improper handling of input/output, enabling injection of malicious scripts viewed by other users. The CVSSv3.1 base score is 6.1 (Medium) ...