CVE-2025-22506

The software that is vulnerable is SmartAgenda Smart Agenda. The vulnerability is an Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting' (XSS), which allows Stored XSS. This issue affects Smart Agenda versions from n/a through 4.7. The vulnerability has been assigned a CVE identifier: CVE-2025-22506. There is no information provided about whether this vulnerability has a public exploit or if it has been exploited by attackers. Additionally, there is no information about the number of Internet users that can be affected by the exploitation of this vulnerability. Stored XSS can be exploited by attackers to inject malicious scripts into a website, potentially affecting users who visit the compromised website.

#SmartAgenda #SmartAgendaVulnerability #CrossSiteScripting #XSS #StoredXSS #CVE202522506 #ImproperNeutralizationOfInput #WebPageGenerationVulnerability #SmartAgendaSecurity