Talentsoft · Talentsoft E-Bap Automation · CVE-2025-10876
**Name of the Vulnerable Software and Affected Versions**
TalentSoft Software e-BAP Automation versions 1.8.96 through 41815
**Description**
The software contains an Improper Neutralization of Input During Web Page Generation issue, which allows for Cross-Site Scripting (XSS). This means that malicious scripts can be injected into web pages viewed by other users. The issue affects the e-BAP Automation component.
**Recommendations**
Update TalentSoft Software e-BAP Automation to a version later than 41815.