CVE-2025-61999 | Opexus FOIAXpress 11.1.0/11.12.3.0/11.13.1.0 SVG Image Logo cross site scripting

Inserito da Angelo Barbosa | Ott 8, 2025 | CVE

A vulnerability identified as problematic has been detected in Opexus FOIAXpress 11.1.0/11.12.3.0/11.13.1.0. Affected by this issue is some unknown functionality of the component SVG Image Logo Handler. The manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2025-61999. The attack can be initiated remotely. There is not any exploit available.

You should upgrade the affected component.

CVE-2025-61999 | Opexus FOIAXpress 11.1.0/11.12.3.0/11.13.1.0 SVG Image Logo cross site scripting

Post correlati

CVE-2024-41804 | xibosignage xibo-cms up to 3.3.11/4.0.13 sql injection (GHSA-4pp3-4mw7-qfwr)

CVE-2024-9064 | Elementor Inline SVG Plugin up to 1.2.0 on WordPress SVG File Upload cross site scripting

CVE-2024-21983 | NetApp StorageGRID up to 11.7 uncaught exception (ntap-20240216-0012)

CVE-2024-8291 | Concrete CMS up to 8.5.18/9.3.3 Image Editor Background Color cross site scripting