CVE-2025-40726 | Nosto GET Request Parameter search-results-page q cross site scripting

Inserito da Angelo Barbosa | Giu 16, 2025 | CVE

A vulnerability was found in Nosto. It has been classified as problematic. This affects an unknown part of the file /pages/search-results-page of the component GET Request Parameter Handler. The manipulation of the argument q leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-40726. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-40726 | Nosto GET Request Parameter search-results-page q cross site scripting

Post correlati

CVE-2024-3479 | Motorola Enterprise MotoDpms Provider prior 2023-12-01 improper export of android application components

CVE-2024-39437 | Unisoc S8000 Linkturbonative Service command injection

CVE-2024-32881 | danswer-ai danswer up to 0.3.62 improper authorization

CVE-2024-47592 | SAP NetWeaver Application Server Java 7.5 Logon Application excessive authentication