2 matches found
CVE-2025-14692 Mayan EDMS authentication redirect
A flaw has been found in Mayan EDMS up to 4.10.1. The impacted element is an unknown function of the file /authentication/. This manipulation causes open redirect. It is possible to initiate the attack remotely. The exploit has been published and may be used. Upgrading to version 4.10.2 is...
CVE-2025-14691
Mayan EDMS up to 4.10.1 has a cross-site scripting (XSS) vulnerability in an unknown function of the /authentication/ component. The issue is exploitable remotely and an exploit is publicly available. Upgrading to version 4.10.2 (or higher) fixes the vulnerability; the vendor confirms the fix in ...