CVE-2025-41103

Publication date

2025-11-11 12:16:38

Family

INCIBE

State

PUBLISHED

Description

HTML injection vulnerability found in Fairsketchs RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter reply_message in /messages/reply.