4 matches found
CVE-2025-11682
Stored cross-site scripting XSS vulnerability in the LMT Dashboard of the Perx Customer Engagement & Loyalty Platform allows an authenticated attacker to execute arbitrary JavaScript code in a victim's browser. The vulnerability is due to improper sanitization of SVG file uploads. An attacker can...
CVE-2025-11682
Stored cross-site scripting XSS vulnerability in the LMT Dashboard of the Perx Customer Engagement & Loyalty Platform allows an authenticated attacker to execute arbitrary JavaScript code in a victim's browser. The vulnerability is due to improper sanitization of SVG file uploads. An attacker can...
CVE-2025-11682 Stored Cross-Site Scripting in Perx Customer Engagement & Loyalty Platform
Stored cross-site scripting XSS vulnerability in the LMT Dashboard of the Perx Customer Engagement & Loyalty Platform allows an authenticated attacker to execute arbitrary JavaScript code in a victim's browser. The vulnerability is due to improper sanitization of SVG file uploads. An attacker can...
PT-2025-43900
Name of the Vulnerable Software and Affected Versions Perx Customer Engagement & Loyalty Platform versions prior to 4.617.4 Description A stored cross-site scripting XSS issue exists in the LMT Dashboard of the Perx Customer Engagement & Loyalty Platform. This allows an authenticated attacker to...