CVE-2025-11435

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions JhumanJ OpnForm versions up to 1.9.3

Description A security issue exists in JhumanJ OpnForm that allows for cross site scripting. This impacts an unknown functionality within the /show/submissions file. The attack can be initiated remotely and has been publicly disclosed.

Recommendations Deploy the patch with identifier a2af1184e53953afa8cb052f4055f288adcaa608.

Exploit

Fix

XSS

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79CWE-94

Related Identifiers

CVE-2025-11435

Affected Products

Jhumanj Opnform

CVE-2025-11435

Weakness Enumeration

Related Identifiers

Affected Products

References · 11