CVE-2025-0876

Name of the Vulnerable Software and Affected Versions IT's Workif versions through 20251003

Description The software contains a flaw related to improper handling of user-supplied data during web page creation, potentially leading to Cross-Site Scripting (XSS). This could allow an attacker to inject malicious scripts into web pages viewed by other users. The affected component is susceptible to XSS attacks due to insufficient input validation.

Recommendations Update to a version beyond 20251003.