CVE-2025-0972 | Zenvia Movidesk up to 25.01.22 New Ticket subject cross site scripting

Inserito da Angelo Barbosa | Feb 2, 2025 | CVE

A vulnerability classified as problematic has been found in Zenvia Movidesk up to 25.01.22. This affects an unknown part of the component New Ticket Handler. The manipulation of the argument subject leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-0972. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

CVE-2025-0972 | Zenvia Movidesk up to 25.01.22 New Ticket subject cross site scripting

Post correlati

CVE-2024-3012 | Tenda FH1205 2.0.0.7(775) GetParentControlInfo mac stack-based overflow

CVE-2024-28196 | Yooooomi your_spotify up to 1.8.x ui layer

CVE-2025-0210 | Campcodes School Faculty Scheduling System 1.0 ajax.php?action=login username sql injection

CVE-2024-30896 | InfluxData InfluxDB up to 2.7.10 information disclosure