CNNVD-202512-4767 Information

Dec 25, 2025 cve

CNNVD ID

CNNVD-202512-4767

CVE-2025-2406

  • CNNVD Published: 2025-12-25

Description (Chinese)

Verisay Trizbi是英国Verisay公司的一个针对渠道商管理的企业资源计划管理系统。 Verisay Trizbi 2.144.4之前版本存在跨站脚本漏洞,该漏洞源于输入中和不当,可能导致跨站脚本攻击。

Description (English)

Verisay Trizbi is an enterprise resource planning management system (ERPMS) for the management of the conduits of Verisay, United Kingdom. Verisay Trizbi 2.144.4 had a cross-site script loophole, which originated in inappropriate input and could lead to cross-site script attacks.

Hazard Level

Medium

Vulnerability Type

跨站脚本

Affected Vendor

Verisay

Published

2025-12-25

Last Modified

2026-02-24

References

https://www.usom.gov.tr/bildirim/tr-25-0486

Patch

https://www.trizbi.com/en

Share on: