CVE-2025-23799

Name of the Vulnerable Software and Affected Versions .TUBE Video Curator versions n/a through 1.1.9

Description The issue is related to improper neutralization of input during web page generation, also known as Cross-site Scripting. This allows for Reflected XSS in .TUBE gTLD .TUBE Video Curator.

Recommendations For versions n/a through 1.1.9, update to a version later than 1.1.9 to resolve the issue. As a temporary workaround, consider restricting user input to minimize the risk of exploitation.