| ID | CVE-2025-25477 | ||||||
| Sažetak | A host header injection vulnerability in SysPass 3.2x allows an attacker to load malicious JS files from an arbitrary domain which would be executed in the victim's browser. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | None | ||||||
| Zadnje važnije ažuriranje | 28-02-2025 - 00:15 | ||||||
| Objavljeno | 28-02-2025 - 00:15 |
