CVE-2025-61080

Name of the Vulnerable Software and Affected Versions Clear2Pay Bank Visibility Application - Payment Execution version 1.10.0.104

Description A reflected Cross-Site Scripting (XSS) issue exists. The issue is due to improper input validation in the application. Specifically, the ID parameter within the URL is susceptible to exploitation. This allows an attacker to inject malicious scripts into the application, potentially leading to unauthorized actions or data theft.

Recommendations Apply input validation and sanitization to the ID parameter in the URL to prevent the injection of malicious scripts.