CVE-2025-52754

Name of the Vulnerable Software and Affected Versions selloio Sello ChannelConnector versions through 1.6.3

Description The Sello ChannelConnector software contains a flaw due to improper input handling during web page generation, leading to a Reflected Cross-site Scripting (XSS) condition. This allows an attacker to inject malicious scripts into web pages viewed by other users. The vulnerable component is the sello-channelconnector.

Recommendations Versions prior to or equal to 1.6.3 require attention. At the moment, there is no information about a newer version that contains a fix for this vulnerability.