CNNVD-202511-1625 Information

CNNVD ID

CNNVD-202511-1625

Related CVE

CVE-2025-40681

• CNNVD Published: 2025-11-13

Description (Chinese)

xCally Omnichannel是意大利xCally公司的一款整合通讯平台。 xCally Omnichannel v3.30.1版本存在跨站脚本漏洞，该漏洞源于反射型跨站脚本，可能导致攻击者执行恶意JavaScript代码。

Description (English)

XCally Omnichannel is an integrated communications platform for the Italian company xCally. Version xCally Omnichannel v. 3.30.1 has a cross-site script loophole, which originates from a reflector-type cross-site script and may lead the attackers to carry out malicious JavaScript code.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

xCally

Published

2025-11-13

Last Modified

2026-02-24

References

https://www.incibe.es/en/incibe-cert/notices/aviso/cross-site-scripting-xss-xcally-omnichannel