CVE-2025-67634 | CISA Software Acquisition Guide Tool prior 2025-12-11 JSON File Parser cross site scripting

A vulnerability was found in CISA Software Acquisition Guide Tool. It has been rated as problematic. This impacts an unknown function of the component JSON File Parser. This manipulation causes cross site scripting.

This vulnerability is handled as CVE-2025-67634. It is possible to launch the attack on the local host. There is not any exploit available.

This product is a managed service. It is not possible for users to maintain vulnerability countermeasures themselves. Upgrading the affected component is advised.

CVE-2025-67634 | CISA Software Acquisition Guide Tool prior 2025-12-11 JSON File Parser cross site scripting

Post correlati

CVE-2025-5879 | WuKongOpenSource WukongCRM 9.0 File Upload AdminSysConfigController.java cross site scripting

CVE-2025-1157 | Allims lab.online up to 20250201 model_recuperar_senha.php recuperacao sql injection

CVE-2023-45066 | Smackcoders Export All Plugin up to 2.4.1 on WordPress information disclosure

CVE-2024-46485 | dingfanzu CMS 1.0 doAdminAction.php cross-site request forgery