CVE-2025-40702 | ACDH-CH OpenAtlas 8.9.0 /insert/file creator/license_holder cross site scripting

Inserito da Angelo Barbosa | Ago 29, 2025 | CVE

A vulnerability categorized as problematic has been discovered in ACDH-CH OpenAtlas 8.9.0. The affected element is an unknown function of the file /insert/file. Executing manipulation of the argument creator/license_holder can lead to cross site scripting.

This vulnerability is registered as CVE-2025-40702. It is possible to launch the attack remotely. No exploit is available.

CVE-2025-40702 | ACDH-CH OpenAtlas 8.9.0 /insert/file creator/license_holder cross site scripting

Post correlati

CVE-2024-36401 | GeoServer up to 2.23.5/2.24.3/2.25.1 OGC Request neutralization of directives (GHSA-6jj6-gm7p-fcvv)

CVE-2024-6959 | parisneo lollms-webui up to 9.8 Audio File resource consumption

CVE-2023-51688 | impleCode eCommerce Product Catalog Plugin up to 3.3.26 on WordPress information disclosure

CVE-2024-12354 | SourceCodester Phone Contact Manager System 1.0 User Menu MenuDisplayStart buffer overflow