CVE-2025-9910 | jsondiffpatch up to 0.7.1 HtmlFormatter::nodeBegin cross site scripting (SNYK-JS-JSONDIFFPATCH-10369031)

Inserito da Angelo Barbosa | Set 11, 2025 | CVE

A vulnerability classified as problematic has been found in jsondiffpatch up to 0.7.1. Affected by this vulnerability is the function HtmlFormatter::nodeBegin. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-9910. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-9910 | jsondiffpatch up to 0.7.1 HtmlFormatter::nodeBegin cross site scripting (SNYK-JS-JSONDIFFPATCH-10369031)

Post correlati

CVE-2024-8342 | SourceCodester Petshop Management System 1.0 add_client.php image_profile unrestricted upload

CVE-2024-11050 | AMTT Hotel Broadband Operation System up to 3.0.3.151204 /language.php LangID/LangName/LangEName cross site scripting

CVE-2025-6428 | Mozilla Firefox up to 139 on Android URL querystring redirect

CVE-2024-13726 | Themes Coder Plugin up to 1.3.4 on WordPress sql injection