2 matches found
CVE-2025-3387
The CVE-2025-3387 issue affects renrenio renren-security up to version 5.4.0, specifically the JSON Handler component. Root cause is a cross-site scripting vulnerability in the JSON Handler that can be triggered remotely. Publicly disclosed exploit details exist, and the impact is limited to the ...
PT-2025-15306 · Renrenio · Renren-Security
Name of the Vulnerable Software and Affected Versions: renrenio renren-security versions up to 5.4.0 Description: A vulnerability has been found in renrenio renren-security, affecting an unknown part of the JSON Handler component. The manipulation leads to cross-site scripting attacks, which can ...