CVE-2025-15022 | vaadin/vaadin-spreadsheet-flow up to 7.7.49/8.29.1/23.6.5/24.8.13/24.9.6 cross site scripting

Inserito da Angelo Barbosa | Gen 5, 2026 | CVE

A vulnerability described as problematic has been identified in vaadin and vaadin-spreadsheet-flow up to 7.7.49/8.29.1/23.6.5/24.8.13/24.9.6. This affects an unknown function. Such manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-15022. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is recommended.

CVE-2025-15022 | vaadin/vaadin-spreadsheet-flow up to 7.7.49/8.29.1/23.6.5/24.8.13/24.9.6 cross site scripting

Post correlati

CVE-2025-7496 | WPC Smart Compare for WooCommerce Plugin up to 6.4.7 on WordPress cross site scripting

CVE-2023-40113 | Google Android 11/12/12L/13 Message Data information disclosure

CVE-2024-29489 | Jerryscript 2.4.0 ecma-helpers.c ecma_get_object_type memory corruption (Issue 5101)

CVE-2025-5195 | GitLab Community Edition/Enterprise Edition up to 17.10.7/17.11.3/18.0.1 authorization (Issue 534960)