CVE-2021-25925

Name of the Vulnerable Software and Affected Versions SiCKRAGE versions 4.2.0 through 10.0.11.dev1

Description The issue arises from improper validation of user input when processed by the server, leading to Stored Cross-Site-Scripting (XSS). This allows an attacker to inject arbitrary JavaScript code inside the application, potentially stealing a user's sensitive information.

Recommendations For SiCKRAGE versions 4.2.0 through 10.0.11.dev1, consider implementing proper input validation to prevent XSS attacks. As a temporary workaround, restrict user input to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.