CVE-2025-57520 | Decap CMS up to 3.8.3 Content Preview Pane body/tags/title/description cross site scripting

Inserito da Angelo Barbosa | Set 10, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in Decap CMS up to 3.8.3. This impacts an unknown function of the component Content Preview Pane. Performing manipulation of the argument body/tags/title/description results in cross site scripting.

This vulnerability is identified as CVE-2025-57520. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-57520 | Decap CMS up to 3.8.3 Content Preview Pane body/tags/title/description cross site scripting

Post correlati

CVE-2025-26397 | SolarWinds Observability Self-Hosted up to 2025.2 deserialization

CVE-2024-12030 | MDTF Plugin up to 1.3.3.5 on WordPress sql injection

CVE-2024-5931 | zephyrproject-rtos Zephyr up to 3.6 BT bap_broadcast_assistant stack-based overflow (GHSA-r8h3-64gp-wv7f)

CVE-2024-34488 | Faucet SDN Ryu 4.34 parser.py OFPMultipartReply infinite loop (Issue 191)