Security Advisory

CVE-2025-44024

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-14 00:00:00

Last updated 2025-05-15 13:53:29

Assigner mitre

State PUBLISHED

Description

Cross-Site Scripting (XSS) vulnerability was discovered in the Pichome system v2.1.0 and before. The vulnerability exists due to insufficient sanitization of user input in the login form. An attacker can inject malicious JavaScript code into the username or password fields during the login process

← Browse all CVEs View on cve.org ↗