CVE-2026-12425 | PowerSchool Employee Access Center 23.10 eval cross site scripting (PANW-2026-0002)

Inserito da Angelo Barbosa | Giu 16, 2026 | CVE

A vulnerability classified as problematic was found in PowerSchool Employee Access Center 23.10. Affected by this vulnerability is the function eval. The manipulation results in cross site scripting.

This vulnerability was named CVE-2026-12425. The attack may be performed from remote. There is no available exploit.

CVE-2026-12425 | PowerSchool Employee Access Center 23.10 eval cross site scripting (PANW-2026-0002)

Post correlati

CVE-2026-22747 | Vmware Spring Security up to 7.0.4 x.509 Certificate certificate validation

CVE-2024-21597 | Juniper Junos OS on MX Packet Forwarding Engine exposure of resource (JSA75738)

CVE-2025-12250 | OpenWGA 7.11.12 Build 737 TMLScript API WGA.File path traversal

CVE-2025-24699 | Wow-Company WP Coder Plugin up to 3.6 on WordPress cross-site request forgery