Caido · Caido · CVE-2025-53834
Name of the Vulnerable Software and Affected Versions:
Caido versions prior to 0.49.0
Description:
Caido is a web security auditing toolkit. A reflected cross-site scripting (XSS) issue exists in Caido’s toast UI component. Toast messages may reflect unsanitized user input in tools like Match&Replace and Scope, potentially allowing an attacker to execute arbitrary scripts.
Recommendations:
Update to version 0.49.0 or later.