CNNVD-202507-1922 Information

CNNVD ID

CNNVD-202507-1922

Related CVE

CVE-2025-53839

• CNNVD Published: 2025-07-14

Description (Chinese)

DRACOON Branding Service是德国DRACOON公司的一个品牌定制软件。 DRACOON Branding Service 2.10.0之前版本存在跨站脚本漏洞，该漏洞源于输入中和不当，可能导致跨站脚本攻击。

Description (English)

DRACOON Branding Service is a brand-made software for DRACOON in Germany. The pre-DRACOON Branding Service 2.10.0 had a cross-site script loophole, which originated in inappropriate input and could lead to cross-site script attacks.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

Draege

Published

2025-07-14

Last Modified

2026-02-24

References

https://nvd.nist.gov/vuln/detail/CVE-2025-53839 https://access.redhat.com/security/cve/cve-2025-53839

Patch

https://github.com/dracoon/security-advisories/security/advisories/GHSA-jv2h-8mw7-mc97