Security Advisory

CVE-2025-40729

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-16 08:30:21

Last updated 2025-06-16 16:04:42

Assigner INCIBE

State PUBLISHED

Description

Reflected Cross-Site Scripting (XSS) in /customer_support/index.php in Customer Support System v1.0, which allows remote attackers to execute arbitrary code via the page parameter.

← Browse all CVEs View on cve.org ↗