Security Advisory
CVE-2025-60646
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
A stored cross-site scripting (XSS) in the Business Line Management module of Xxl-api v1.3.0 attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter.