CVE-2025-40726 Information

Jun 17, 2025 cve

Description

Reflected Cross-Site Scripting (XSS) vulnerability in /pages/search-results-page in Nosto which allows remote attackers to execute arbitrary code via the q GET request parameter.

Reference

https://www.incibe.es/en/incibe-cert/notices/aviso/cross-site-scripting-xss-reflected-nosto

CNNVD-202506-1866 (Published: 2025-06-16)

Share on: