CNNVD-202509-2801 Information

Sep 17, 2025 cve

CNNVD ID

CNNVD-202509-2801

CVE-2025-0420

  • CNNVD Published: 2025-09-17

Description (Chinese)

Paraşüt是土耳其Paraşüt公司的一款基于云的在线财务与会计管理软件。 Paraşüt 0.0.0.65efa44e版本至20250204版本存在跨站脚本漏洞,该漏洞源于输入中和不当,可能导致跨站脚本攻击。

Description (English)

Paraşut is a cloud-based online financial and accounting management software for Paraşüt, Turkey. Paraşt 0.0.65 efa44e versions to 20250204 contain a cross-site script loophole, which stems from inappropriate input and may lead to cross-site script attacks.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

Passbolt

Published

2025-09-17

Last Modified

2026-02-24

References

https://www.usom.gov.tr/bildirim/tr-25-0261

Patch

https://www.parasut.com/

Share on: