Security Advisory

CVE-2025-40648

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-01 12:30:44

Last updated 2025-10-01 14:58:08

Assigner INCIBE

State PUBLISHED

Description

Stored Cross-Site Scripting (XSS) vulnerability in Issabel v5.0.0, consisting of a stored XSS due to a lack of proper validation of user input, through the numero_conferencia parameter in /index.php?menu=conferencia.

← Browse all CVEs View on cve.org ↗