CVE-2025-14695

Name of the Vulnerable Software and Affected Versions SamuNatsu HaloBot (affected versions not specified)

Description A flaw exists in the html renderer function within the plugins/html renderer/index.js file of the Inter-plugin API component. Manipulation of the action argument can lead to dynamically-managed code resources, and the attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted but did not respond. This issue only affects unsupported products.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.