CVE-2025-41102 | Fairsketch RISE CRM Framework up to 3.8 POST Request /events/save Title cross site scripting

Inserito da Angelo Barbosa | Nov 11, 2025 | CVE

A vulnerability described as problematic has been identified in Fairsketch RISE CRM Framework up to 3.8. The affected element is an unknown function of the file /events/save of the component POST Request Handler. The manipulation of the argument Title results in cross site scripting.

This vulnerability is cataloged as CVE-2025-41102. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2025-41102 | Fairsketch RISE CRM Framework up to 3.8 POST Request /events/save Title cross site scripting

Post correlati

CVE-2025-9526 | Linksys E1700 1.0.0.4.003 /goform/setSysAdm rm_port stack-based overflow

CVE-2024-2142 | Ultimate Addons for Beaver Builder Plugin up to 1.5.7 on WordPress Info Table Widget cross site scripting

CVE-2024-49516 | Adobe Substance3D Painter up to 10.1.0 out-of-bounds write (apsb24-86)

CVE-2022-42449 | HCL Domino Volt File Type Filter Policy unrestricted upload (KB0120722)