CVE-2025-57996

Name of the Vulnerable Software and Affected Versions Buckets versions through 0.3.9

Description The software contains a flaw related to improper input handling during web page generation, which can lead to Stored Cross-site Scripting (XSS). This allows an attacker to inject malicious scripts into web pages viewed by other users. The affected software is Buckets.

Recommendations Update Buckets to a version later than 0.3.9.