CVE-2025-57897

Name of the Vulnerable Software and Affected Versions venusweb Logtik versions prior to 2.3

Description The software contains a flaw related to improper input handling during web page generation, which allows for Reflected Cross-site Scripting (XSS). This means that malicious code can be injected into web pages viewed by users. The vulnerable component allows attackers to inject scripts into the affected application. The vulnerable parameter is not specified.

Recommendations Update venusweb Logtik to a version newer than 2.3.