CVE-2025-60983

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Rubikon Banking Solution version 4.0.3

Description A reflected cross-site scripting issue exists in the "Search For Customers Information" endpoints of Rubikon Banking Solution. This allows for the injection of malicious scripts through reflected input. The Search For Customers Information endpoint is vulnerable. The vulnerable parameter is not specified.

Recommendations Apply input validation and output encoding to the Search For Customers Information endpoint to prevent the injection of malicious scripts.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2025-60983

Affected Products

Rubikon Banking Solution

CVE-2025-60983

Weakness Enumeration

Related Identifiers

Affected Products

References · 3