CVE Archive

CVE ID	Name	Publish Date	References
CVE-2025-0054	Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server Java	2025-02-11T00:32:57.017Z	SAP NetWeaver Application Server Java SAP_SE
CVE-2025-0062	Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Business Intelligence Platform (Web Intelligence)	2025-03-11T00:31:18.755Z	SAP BusinessObjects Business Intelligence Platform SAP_SE
CVE-2025-0104	Expedition: Cross-Site Scripting (XSS) Vulnerability	Expedition Palo Alto Networks	Cloud NGFW Palo Alto Networks
CVE-2025-0133	PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal	2025-05-14T18:07:36.381Z	PAN-OS Palo Alto Networks
CVE-2025-0183	Stored XSS in binary-husky/gpt_academic	2025-03-20T10:10:24.705Z	binary-husky/gpt_academic binary-husky
CVE-2025-0192	Stored Cross-site Scripting (XSS) in wandb/openui	2025-03-20T10:10:22.264Z	wandb/openui wandb
CVE-2025-0193	Stored Cross-site Scripting (XSS) Vulnerability in the MGate 5121/5122/5123 Series	MGate 5122 Series Moxa	MGate 5121 Series Moxa
CVE-2025-0209	Reflected Cross-Site Scripting (XSS) in WSO2 Identity Server Account Registration Flow	2025-09-23T17:13:10.597Z	WSO2 Identity Server WSO2
CVE-2025-0281	Stored Cross-Site Scripting (XSS) in lunary-ai/lunary	2025-03-20T10:10:44.872Z	lunary-ai/lunary lunary-ai
CVE-2025-0329	AI ChatBot for WordPress – WPBot < 6.2.4 - Admin+ Stored XSS	2025-05-15T20:07:24.900Z	AI ChatBot for WordPress Unknown
CVE-2025-0368	Banner Garden Plugin for WordPress <= 0.1.3 - Reflected XSS	2025-02-04T06:00:11.421Z	Banner Garden Plugin for WordPress Unknown
CVE-2025-0419	XSS in Mikrogrup's Zirve Nova	2025-09-17T08:20:40.788Z	Zirve Nova Zirve Information Technologies Inc.
CVE-2025-0420	XSS in Mikrogrup's Paraşüt	2025-09-17T09:14:03.419Z	Paraşüt Paraşüt Software
CVE-2025-0522	LikeBot – Decentralized like-system <= 0.85 - Admin+ Stored XSS via CSRF	2025-02-06T06:00:04.828Z	LikeBot Unknown
CVE-2025-0545	XSS in Tekrom Technology's T-Soft E-Commerce	2025-02-24T13:43:48.167Z	T-Soft E-Commerce Tekrom Technology
CVE-2025-0546	XSS in Mevzuattr Software's MevzuatTR	2025-09-17T11:42:42.358Z	MevzuatTR Mevzuattr Software
CVE-2025-0547	XSS in Mikrogrup's Bizmu	2025-09-18T08:59:04.983Z	Bizmu Paraşüt Software
CVE-2025-0583	aEnrich Technology a+HRD - Reflected Cross-site Scripting(XSS)	2025-01-20T01:51:47.137Z	a+HRD aEnrich Technology
CVE-2025-0595	Stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x	2025-03-17T13:47:10.467Z	3DSwymer Dassault Systèmes
CVE-2025-0596	Stored Cross-site Scripting (XSS) vulnerability affecting Bookmark Editor in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x	2025-03-17T13:47:37.908Z	ENOVIA Collaborative Industry Innovator Dassault Systèmes
CVE-2025-0598	Stored Cross-site Scripting (XSS) vulnerability affecting Relations in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x	2025-03-17T13:48:13.773Z	ENOVIA Collaborative Industry Innovator Dassault Systèmes
CVE-2025-0599	Stored Cross-site Scripting (XSS) vulnerability affecting Document Management in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x	2025-03-17T13:49:03.861Z	ENOVIA Collaborative Industry Innovator Dassault Systèmes
CVE-2025-0600	Stored Cross-site Scripting (XSS) vulnerability affecting Product Explorer in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x	2025-03-17T13:49:26.468Z	ENOVIA Collaborative Industry Innovator Dassault Systèmes
CVE-2025-0601	Stored Cross-site Scripting (XSS) vulnerability affecting Issue Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x	2025-03-17T13:49:31.605Z	ENOVIA Collaborative Industry Innovator Dassault Systèmes
CVE-2025-0602	Stored Cross-site Scripting (XSS) vulnerability affecting Compare in Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x	2025-05-30T14:19:49.945Z	Collaborative Industry Innovator Dassault Systèmes
CVE-2025-0609	XSS in Logo Software's Logo Cloud	2025-10-06T09:21:45.354Z	Logo Cloud Logo Software Inc.
CVE-2025-0613	Photo Gallery < 1.8.34 - Unauthenticated Stored XSS	2025-03-31T06:00:01.529Z	Photo Gallery by 10Web Unknown
CVE-2025-0627	AI Autotagger < 3.30.0 - Admin+ Stored XSS	2025-04-28T06:00:02.592Z	WordPress Tag, Category, and Taxonomy Manager Unknown
CVE-2025-0629	Coronavirus (COVID-19) Notice Message <= 1.1.2 - Admin+ Stored XSS	2025-03-11T06:00:12.568Z	Coronavirus (COVID-19) Notice Message Unknown
CVE-2025-0660	Stored XSS in Folder Function by Rogue Admin	2025-03-10T20:57:57.707Z	Concrete CMS Concrete CMS
CVE-2025-0666	BOINC Server Stored XSS Injection in host_venue_action.php	2025-05-07T07:38:07.341Z	BOINC Server BOINC
CVE-2025-0667	BOINC Server Stored XSS Injection in pm.php	2025-05-07T07:38:50.926Z	BOINC Server BOINC
CVE-2025-0671	Email Subscribers < 5.7.50 - Admin+ Stored XSS in Template	2025-04-25T06:00:09.903Z	Icegram Express Unknown
CVE-2025-0687	Spiritual Gifts Survey <= 0.9.10 - Unauthenticated CSRF to XSS	2025-05-15T20:07:25.468Z	Spiritual Gifts Survey (and optional S.H.A.P.E survey) Unknown
CVE-2025-0688	Spiritual Gifts Survey <= 0.9.10 - Unauthenticated CSRF to XSS	2025-05-15T20:07:25.673Z	Spiritual Gifts Survey (and optional S.H.A.P.E survey) Unknown
CVE-2025-0692	Simple Video Management System <= 1.0.4 - Admin+ Stored XSS	2025-02-13T06:00:12.915Z	Simple Video Management System Unknown
CVE-2025-0717	Social Slider Feed < 2.2.9 - Admin+ Stored XSS	2025-03-25T06:00:14.221Z	Social Slider Feed Unknown
CVE-2025-0718	Nested Pages < 3.2.13 - Contributor+ Stored XSS	2025-03-23T06:00:04.552Z	Nested Pages Unknown
CVE-2025-0826	Stored Cross-site Scripting (XSS) vulnerability affecting 3D Navigate in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x	2025-03-17T13:49:44.172Z	ENOVIA Collaborative Industry Innovator Dassault Systèmes
CVE-2025-0827	Stored Cross-site Scripting (XSS) vulnerability affecting 3DPlay in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x	2025-03-17T13:49:56.352Z	3DSwymer Dassault Systèmes
CVE-2025-0828	Stored Cross-site Scripting (XSS) vulnerability affecting Engineering Release in ENOVIA Product Engineering Specialist from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x	2025-03-17T13:50:07.283Z	ENOVIA Product Engineering Specialist Dassault Systèmes
CVE-2025-0829	Stored Cross-site Scripting (XSS) vulnerability affecting 3D Markup in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x	2025-03-17T13:50:18.950Z	ENOVIA Collaborative Industry Innovator Dassault Systèmes
CVE-2025-0830	Stored Cross-site Scripting (XSS) vulnerability affecting Meeting Management in ENOVIA Change Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x	2025-03-17T13:50:29.066Z	ENOVIA Change Manager Dassault Systèmes
CVE-2025-0832	Stored Cross-site Scripting (XSS) vulnerability affecting Project Gantt in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x	2025-03-17T13:50:41.077Z	ENOVIA Collaborative Industry Innovator Dassault Systèmes
CVE-2025-0833	Stored Cross-site Scripting (XSS) vulnerability affecting Route Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x	2025-03-17T13:50:50.134Z	ENOVIA Collaborative Industry Innovator Dassault Systèmes
CVE-2025-0876	XSS in Isin Basi Advertisement & IT's Workif	2025-10-03T11:25:23.950Z	IT's Workif Isin Basi Advertisement Information Technologies Trade Inc.
CVE-2025-0877	XSS in AtaksAPP's Reservation Management System	2025-03-06T13:09:06.285Z	Reservation Management System AtaksAPP
CVE-2025-0878	XSS in Akinsoft's LimonDesk	2025-09-03T13:16:51.212Z	LimonDesk Akinsoft
CVE-2025-0879	XSS in Shopside Software's Shopside App	2025-09-17T12:32:42.925Z	Shopside App Shopside Software
CVE-2025-0930	Reflected Cross-Site Scripting (XSS) vulnerability in TeamCal Neo	2025-01-31T13:45:09.339Z	TeamCal Neo Lewe

CVE ID

Name

Publish Date

References

CVE-2025-0054

Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server Java

2025-02-11T00:32:57.017Z

SAP NetWeaver Application Server Java SAP_SE

CVE-2025-0062

Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Business Intelligence Platform (Web Intelligence)

2025-03-11T00:31:18.755Z

SAP BusinessObjects Business Intelligence Platform SAP_SE

CVE-2025-0104

Expedition: Cross-Site Scripting (XSS) Vulnerability

Expedition Palo Alto Networks

Cloud NGFW Palo Alto Networks

CVE-2025-0133

PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal

2025-05-14T18:07:36.381Z

PAN-OS Palo Alto Networks

CVE-2025-0183

Stored XSS in binary-husky/gpt_academic

2025-03-20T10:10:24.705Z

binary-husky/gpt_academic binary-husky

CVE-2025-0192

Stored Cross-site Scripting (XSS) in wandb/openui

2025-03-20T10:10:22.264Z

wandb/openui wandb

CVE-2025-0193

Stored Cross-site Scripting (XSS) Vulnerability in the MGate 5121/5122/5123 Series

MGate 5122 Series Moxa

MGate 5121 Series Moxa

CVE-2025-0209

Reflected Cross-Site Scripting (XSS) in WSO2 Identity Server Account Registration Flow

2025-09-23T17:13:10.597Z

WSO2 Identity Server WSO2

CVE-2025-0281

Stored Cross-Site Scripting (XSS) in lunary-ai/lunary

2025-03-20T10:10:44.872Z

lunary-ai/lunary lunary-ai

CVE-2025-0329

AI ChatBot for WordPress – WPBot < 6.2.4 - Admin+ Stored XSS

2025-05-15T20:07:24.900Z

AI ChatBot for WordPress Unknown

CVE-2025-0368

Banner Garden Plugin for WordPress <= 0.1.3 - Reflected XSS

2025-02-04T06:00:11.421Z

Banner Garden Plugin for WordPress Unknown

CVE-2025-0419

XSS in Mikrogrup's Zirve Nova

2025-09-17T08:20:40.788Z

Zirve Nova Zirve Information Technologies Inc.

CVE-2025-0420

XSS in Mikrogrup's Paraşüt

2025-09-17T09:14:03.419Z

Paraşüt Paraşüt Software

CVE-2025-0522

LikeBot – Decentralized like-system <= 0.85 - Admin+ Stored XSS via CSRF

2025-02-06T06:00:04.828Z

LikeBot Unknown

CVE-2025-0545

XSS in Tekrom Technology's T-Soft E-Commerce

2025-02-24T13:43:48.167Z

T-Soft E-Commerce Tekrom Technology

CVE-2025-0546

XSS in Mevzuattr Software's MevzuatTR

2025-09-17T11:42:42.358Z

MevzuatTR Mevzuattr Software

CVE-2025-0547

XSS in Mikrogrup's Bizmu

2025-09-18T08:59:04.983Z

Bizmu Paraşüt Software

CVE-2025-0583

aEnrich Technology a+HRD - Reflected Cross-site Scripting(XSS)

2025-01-20T01:51:47.137Z

a+HRD aEnrich Technology

CVE-2025-0595

Stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

2025-03-17T13:47:10.467Z

3DSwymer Dassault Systèmes

CVE-2025-0596

Stored Cross-site Scripting (XSS) vulnerability affecting Bookmark Editor in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x

2025-03-17T13:47:37.908Z

ENOVIA Collaborative Industry Innovator Dassault Systèmes

CVE-2025-0598

Stored Cross-site Scripting (XSS) vulnerability affecting Relations in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x

2025-03-17T13:48:13.773Z

ENOVIA Collaborative Industry Innovator Dassault Systèmes

CVE-2025-0599

Stored Cross-site Scripting (XSS) vulnerability affecting Document Management in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x

2025-03-17T13:49:03.861Z

ENOVIA Collaborative Industry Innovator Dassault Systèmes

CVE-2025-0600

Stored Cross-site Scripting (XSS) vulnerability affecting Product Explorer in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x

2025-03-17T13:49:26.468Z

ENOVIA Collaborative Industry Innovator Dassault Systèmes

CVE-2025-0601

Stored Cross-site Scripting (XSS) vulnerability affecting Issue Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

2025-03-17T13:49:31.605Z

ENOVIA Collaborative Industry Innovator Dassault Systèmes

CVE-2025-0602

Stored Cross-site Scripting (XSS) vulnerability affecting Compare in Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x

2025-05-30T14:19:49.945Z

Collaborative Industry Innovator Dassault Systèmes

CVE-2025-0609

XSS in Logo Software's Logo Cloud

2025-10-06T09:21:45.354Z

Logo Cloud Logo Software Inc.

CVE-2025-0613

Photo Gallery < 1.8.34 - Unauthenticated Stored XSS

2025-03-31T06:00:01.529Z

Photo Gallery by 10Web Unknown

CVE-2025-0627

AI Autotagger < 3.30.0 - Admin+ Stored XSS

2025-04-28T06:00:02.592Z

WordPress Tag, Category, and Taxonomy Manager Unknown

CVE-2025-0629

Coronavirus (COVID-19) Notice Message <= 1.1.2 - Admin+ Stored XSS

2025-03-11T06:00:12.568Z

Coronavirus (COVID-19) Notice Message Unknown

CVE-2025-0660

Stored XSS in Folder Function by Rogue Admin

2025-03-10T20:57:57.707Z

Concrete CMS Concrete CMS

CVE-2025-0666

BOINC Server Stored XSS Injection in host_venue_action.php

2025-05-07T07:38:07.341Z

BOINC Server BOINC

CVE-2025-0667

BOINC Server Stored XSS Injection in pm.php

2025-05-07T07:38:50.926Z

BOINC Server BOINC

CVE-2025-0671

Email Subscribers < 5.7.50 - Admin+ Stored XSS in Template

2025-04-25T06:00:09.903Z

Icegram Express Unknown

CVE-2025-0687

Spiritual Gifts Survey <= 0.9.10 - Unauthenticated CSRF to XSS

2025-05-15T20:07:25.468Z

Spiritual Gifts Survey (and optional S.H.A.P.E survey) Unknown

CVE-2025-0688

Spiritual Gifts Survey <= 0.9.10 - Unauthenticated CSRF to XSS

2025-05-15T20:07:25.673Z

Spiritual Gifts Survey (and optional S.H.A.P.E survey) Unknown

CVE-2025-0692

Simple Video Management System <= 1.0.4 - Admin+ Stored XSS

2025-02-13T06:00:12.915Z

Simple Video Management System Unknown

CVE-2025-0717

Social Slider Feed < 2.2.9 - Admin+ Stored XSS

2025-03-25T06:00:14.221Z

Social Slider Feed Unknown

CVE-2025-0718

Nested Pages < 3.2.13 - Contributor+ Stored XSS

2025-03-23T06:00:04.552Z

Nested Pages Unknown

CVE-2025-0826

Stored Cross-site Scripting (XSS) vulnerability affecting 3D Navigate in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

2025-03-17T13:49:44.172Z

ENOVIA Collaborative Industry Innovator Dassault Systèmes

CVE-2025-0827

Stored Cross-site Scripting (XSS) vulnerability affecting 3DPlay in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

2025-03-17T13:49:56.352Z

3DSwymer Dassault Systèmes

CVE-2025-0828

Stored Cross-site Scripting (XSS) vulnerability affecting Engineering Release in ENOVIA Product Engineering Specialist from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

2025-03-17T13:50:07.283Z

ENOVIA Product Engineering Specialist Dassault Systèmes

CVE-2025-0829

Stored Cross-site Scripting (XSS) vulnerability affecting 3D Markup in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

2025-03-17T13:50:18.950Z

ENOVIA Collaborative Industry Innovator Dassault Systèmes

CVE-2025-0830

Stored Cross-site Scripting (XSS) vulnerability affecting Meeting Management in ENOVIA Change Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

2025-03-17T13:50:29.066Z

ENOVIA Change Manager Dassault Systèmes

CVE-2025-0832

Stored Cross-site Scripting (XSS) vulnerability affecting Project Gantt in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

2025-03-17T13:50:41.077Z

ENOVIA Collaborative Industry Innovator Dassault Systèmes

CVE-2025-0833

Stored Cross-site Scripting (XSS) vulnerability affecting Route Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x

2025-03-17T13:50:50.134Z

ENOVIA Collaborative Industry Innovator Dassault Systèmes

CVE-2025-0876

XSS in Isin Basi Advertisement & IT's Workif

2025-10-03T11:25:23.950Z

IT's Workif Isin Basi Advertisement Information Technologies Trade Inc.

CVE-2025-0877

XSS in AtaksAPP's Reservation Management System

2025-03-06T13:09:06.285Z

Reservation Management System AtaksAPP

CVE-2025-0878

XSS in Akinsoft's LimonDesk