Tac Information Services Internal External Trade · Goldenhorn · CVE-2025-13127
**Name of the Vulnerable Software and Affected Versions**
TAC Information Services Internal and External Trade Inc. GoldenHorn versions prior to 4.25.1121.1
**Description**
GoldenHorn contains a flaw related to improper input neutralization during web page generation, which allows for Cross-Site Scripting (XSS). This issue could potentially allow an attacker to inject malicious scripts into web pages viewed by other users.
**Recommendations**
Update GoldenHorn to version 4.25.1121.1 or later.