3 matches found
CVE-2025-0971
A vulnerability was found in Zenvia Movidesk up to 25.01.22. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /Account/EditProfile of the component Profile Editing. The manipulation of the argument username leads to cross site scripting. The attac...
CVE-2025-0971 Zenvia Movidesk Profile Editing EditProfile cross site scripting
A vulnerability was found in Zenvia Movidesk up to 25.01.22. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /Account/EditProfile of the component Profile Editing. The manipulation of the argument username leads to cross site scripting. The attac...
CVE-2025-0971
CVE-2025-0971 affects Zenvia Movidesk. The flaw resides in the Profile Editing component, specifically the /Account/EditProfile function, where manipulating the username parameter can trigger cross-site scripting. The issue appears to be exploitable remotely and was publicly disclosed. All eviden...