Security Advisory

CVE-2025-21572

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-02 21:46:31

Last updated 2025-05-06 15:08:18

Assigner oracle

State PUBLISHED

Description

OpenGrok 1.13.25 has a reflected Cross-Site Scripting (XSS) issue when producing the history view page. This happens through improper handling of path segments. The application reflects unsanitized user input into the HTML output.

← Browse all CVEs View on cve.org ↗