CVE-2025-23557

Name of the Vulnerable Software and Affected Versions Find Your Reps versions n/a through 1.2

Description The issue is a Cross-Site Request Forgery (CSRF) vulnerability that allows Stored XSS. This means an attacker can perform actions on behalf of a user without their knowledge, potentially leading to the execution of malicious scripts stored on the server.

Recommendations For versions n/a through 1.2, as a temporary workaround, consider implementing additional validation for requests to prevent unauthorized actions. Restrict access to sensitive operations to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.