CVE-2025-54881 | mermaid up to 11.9.0 cross site scripting (GHSA-7rqq-prvp-x9jh)

Inserito da Angelo Barbosa | Ago 19, 2025 | CVE

A vulnerability classified as problematic was found in mermaid up to 11.9.0. This vulnerability affects unknown code. Such manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-54881. The attack can be launched remotely. No exploit exists.

A patch should be applied to remediate this issue.

CVE-2025-54881 | mermaid up to 11.9.0 cross site scripting (GHSA-7rqq-prvp-x9jh)

Post correlati

CVE-2024-50210 | Linux Kernel up to 6.12-rc4 posix-clock pc_clock_settime reference count

CVE-2024-49765 | Discourse exposure of private personal information to an unauthorized actor (GHSA-v8rf-pvgm-xxf2)

CVE-2025-49850 | LS Electric GMWin 4 4.18 PRJ File Parser heap-based overflow (icsa-25-168-02)

CVE-2025-5786 | TOTOLINK X15 1.0.0-B20230714.1105 HTTP POST Request /boafrm/formDMZ submit-url buffer overflow