CVE-2025-22583

Name of the Vulnerable Software and Affected Versions Anshul Sojatia Scan External Links versions n/a through 1.0

Description The issue is related to an improper neutralization of input during web page generation, also known as Cross-site Scripting (XSS), which allows Reflected XSS. This can be exploited through the reflection of malicious scripts, allowing attackers to inject code into the website. There is no information provided about a public exploit or whether the vulnerability has been exploited by attackers. Additionally, there is no information about the number of Internet users that can be affected by the exploitation of this vulnerability.

Recommendations For Anshul Sojatia Scan External Links versions n/a through 1.0, as a temporary workaround, consider disabling any functionality that allows user input to be reflected in web pages until a patch is available. Restrict access to any modules or functions that generate web pages based on user input to minimize the risk of exploitation. Avoid using any parameters or variables that could be used to inject malicious scripts in the affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.