CVE-2025-22373

Sažetak

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SicommNet BASEC on SaaS allows Reflected XSS, XSS Through HTTP Query Strings, Rendering of Arbitrary HTML and alternation of CSS Styles This issue affects BASEC: from 14 Dec 2021.

Reference

https://basec.sicomm.net/login/
https://csirt.divd.nl/CVE-2025-22373
https://csirt.divd.nl/DIVD-2025-00001

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

15-04-2025 - 18:39

Objavljeno

14-04-2025 - 16:15