CVE-2025-13127 - CERT CVE

  1. CVE-2025-13127

ID CVE-2025-13127
Sažetak Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in TAC Information Services Internal and External Trade Inc. GoldenHorn allows Cross-Site Scripting (XSS).This issue affects GoldenHorn: before 4.25.1121.1.
Reference
CVSS
Base: 3.5
Impact: 1.4
Exploitability:2.1
Pristup
VektorSloženostAutentikacija
NETWORK LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
LOW NONE NONE
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
Zadnje važnije ažuriranje 12-12-2025 - 15:18
Objavljeno 10-12-2025 - 14:16