EUVD-2025-22316

Malicious code in bioql PyPI...

CVE-2025-51864

A reflected cross-site scripting XSS vulnerability exists in AIBOX LLM chat chat.aibox365.cn through 2025-05-27, allowing attackers to hijack accounts through stolen JWT tokens...

CVE-2025-51864

A reflected cross-site scripting XSS vulnerability exists in AIBOX LLM chat chat.aibox365.cn through 2025-05-27, allowing attackers to hijack accounts through stolen JWT tokens...

PT-2025-30422 · Aibox Llm · Aibox Llm

Name of the Vulnerable Software and Affected Versions: AIBOX LLM chat versions through 2025-05-27 Description: A reflected cross-site scripting XSS issue exists, potentially allowing attackers to hijack accounts through stolen JWT tokens. Recommendations: At the moment, there is no information...

CVE-2025-51864

Summary: CVE-2025-51864 is a reflected XSS vulnerability in the AIBOX LLM chat (chat.aibox365.cn) through 2025-05-27 that could enable JWT token theft and remote account hijack via crafted input. What is affected: AIBOX LLM chat front-end component used for chat interactions. Root cause / impact:...

CVE-2025-51864

A reflected cross-site scripting XSS vulnerability exists in AIBOX LLM chat chat.aibox365.cn through 2025-05-27, allowing attackers to hijack accounts through stolen JWT tokens...

CVE-2025-51864

A reflected cross-site scripting XSS vulnerability exists in AIBOX LLM chat chat.aibox365.cn through 2025-05-27, allowing attackers to hijack accounts through stolen JWT tokens...