2 matches found
CVE-2025-52842
The CVE-2025-52842 issue concerns Laundry (Linux/macOS) v2.3.0, caused by improper neutralization of input during web page generation, enabling a reflected XSS that could lead to account takeover. Public references in NVD/Red Hat and other feeds confirm affected software and vulnerability descrip...
CVE-2025-52841
CVE-2025-52841 is a CSRF vulnerability in Laundry running on Linux and macOS, affecting Laundry 2.3.0 and enabling account takeover. Publicly available sources in the connected set confirm the issue as CSRF leading to potential unauthorized account access, with no explicit exploitation status in ...