CVE-2025-14830

Name of the Vulnerable Software and Affected Versions JFrog Artifactory (Workers) versions 7.94.0 through 7.117.9

Description An issue exists in JFrog Artifactory (Workers) that allows for Cross-Site Scripting (XSS). This is due to improper neutralization of input during web page generation. The issue affects the way data is processed and displayed, potentially allowing an attacker to inject malicious scripts into web pages viewed by other users. The vulnerable component is susceptible to XSS attacks, which could lead to the execution of arbitrary code in the context of a user's browser.

Recommendations Update to a version greater than or equal to 7.117.10.