CVE-2025-22917 Information

Description

A reflected cross-site scripting (XSS) vulnerability in Audemium ERP <=0.9.0 allows remote attackers to execute an arbitrary JavaScript payload in the web browser of a user by including a malicious payload into the ’type’ parameter of list.php.

Reference

https://github.com/timosarkar/vulnerabilities/blob/main/CVE-2025-22917/README.md https://github.com/timosarkar/vulnerabilities/blob/main/CVE-2025-22917/README.md