CVE-2025-0423

Name of the Vulnerable Software and Affected Versions bestinformed Web (affected versions not specified)

Description The issue arises from improper sanitization of user input in the bestinformed Web application, leading to multiple unauthenticated stored cross-site scripting vulnerabilities. An unauthenticated attacker can inject JavaScript code into user sessions, compromising them and potentially abusing the privileges of those users within the application.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.