Security Advisory

CVE-2025-48007

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-19 13:09:47

Last updated 2025-09-19 14:03:52

Assigner HW

State PUBLISHED

Description

Improper Encoding or Escaping of Output vulnerability in Hallo Welt! GmbH BlueSpice (Extension:BlueSpiceAvatars) allows Cross-Site Scripting (XSS). This issue affects BlueSpice: from 5 through 5.1.1.

← Browse all CVEs View on cve.org ↗