CNNVD-202511-2222 Information

CNNVD ID

CNNVD-202511-2222

Related CVE

CVE-2025-63243

• CNNVD Published: 2025-11-19

Description (Chinese)

Pixeon WebLaudos是Pixeon公司的一个允许访问系统出具的检测报告的应用程序。 Pixeon WebLaudos 25.1版本存在安全漏洞，该漏洞源于loginAlterarSenha.asp文件的sle_sSenha参数存在反射型跨站脚本，可能导致执行任意JavaScript代码。

Description (English)

Pixeon WebLaudos is an application of Pixeon that allows access to test reports from the system. Pixeon WebLaudos 25.1 has a security loophole, which stems from the reflection of sle senha parameters in the login AlterarSenha.asp document, which could lead to the implementation of any JavaScript code.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Pixeon

Published

2025-11-19

Last Modified

2026-02-24

References

https://medium.com/@wagneralves_87750/cve-2025-63243-reflected-cross-site-scripting-in-loginalterarsenha-asp-via-sle-slogin-parameter-53808fbbeeee https://www.pixeon.com/ https://access.redhat.com/security/cve/cve-2025-63243