CVE-2025-27447

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined.

Description: The web application is susceptible to cross-site-scripting attacks. An attacker can create a prepared URL, which injects JavaScript code into the website. The code is executed in the victim’s browser when an authenticated administrator clicks the link.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.