CVE-2025-2154

Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Echo Call Center Services Trade and Industry Inc. Specto CM allows Stored XSS. This issue affects Specto CM: before 17032025.

References

https://www.usom.gov.tr/bildirim/tr-25-0480

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0480

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3

EPSS