CVE-2025-63713

Name of the Vulnerable Software and Affected Versions MatchMaster version 1.0

Description A Cross-Site Scripting (XSS) issue exists in MatchMaster. The application does not properly sanitize user-supplied input in test titles and matching pair items before rendering them in the DOM during test execution. This allows for the injection of arbitrary web script or HTML via crafted input in the custom test creation feature.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.