CVE-2025-25825

Description

A cross-site scripting (XSS) vulnerability in Emlog Pro v2.5.4 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Titile in the article category section.

References

https://www.emlog.net/

https://github.com/Ka7arotto/emlog/blob/main/xss-4.md

http://emlogpro.com

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3

EPSS