CNNVD-202512-4156 Information
Dec 23, 2025
cve
CNNVD ID
CNNVD-202512-4156
Related CVE
- CNNVD Published: 2025-12-23
Description (Chinese)
Hotech Otello是土耳其Hotech公司的一个酒店管理云平台。 Hotech Otello 2.4.0版本至2.4.4之前版本存在跨站脚本漏洞,该漏洞源于网页生成期间输入中和不当,可能导致存储型跨站脚本攻击。
Description (English)
Hotech Otello is a hotel management cloud platform for Hotel Turkey. Hotech Otello, before Versions 2.4.0 to 2.4.4, had a cross-site script loophole, which stemmed from the incongruousness of the input during the web page generation and could lead to a storage-type cross-site script attack.
Hazard Level
Medium
Vulnerability Type
跨站脚本
Affected Vendor
Hotech
Published
2025-12-23
Last Modified
2026-02-24
References
https://www.usom.gov.tr/bildirim/tr-25-0476
Patch
https://en.hotech.systems/#home
Share on: