CVE-2025-55288

Name of the Vulnerable Software and Affected Versions: Genealogy versions prior to 4.4.0

Description: Genealogy is a family tree PHP application susceptible to an authenticated reflected cross-site scripting (XSS) issue. An attacker with valid credentials can execute arbitrary JavaScript code within another user's session, potentially leading to session hijacking, data theft, and user interface manipulation.

Recommendations: Update to version 4.4.0 or later.