CVE-2025-63872 | DeepSeek up to 3.2 SVG cross site scripting

Inserito da Angelo Barbosa | Dic 2, 2025 | CVE

A vulnerability has been found in DeepSeek up to 3.2 and classified as problematic. This issue affects some unknown processing of the component SVG Handler. The manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2025-63872. Remote exploitation of the attack is possible. No exploit is available.

CVE-2025-63872 | DeepSeek up to 3.2 SVG cross site scripting

Post correlati

CVE-2024-29902 | sigstore cosign up to 2.2.3 allocation of resources (GHSA-88jx-383q-w4qc)

CVE-2025-20697 | MediaTek MT8893 Power HAL out-of-bounds write (MSV-3795 / ALPS09915681)

CVE-2024-10998 | 1000 Projects Bookstore Management System 1.0 process_category_add.php cat sql injection

CVE-2023-6764 | Zyxel ATP/USG FLEX/USG FLEX 50/USG20-VPN IPSec VPN format string