CVE-2025-46657 Information

Description

Karaz Karazal through 2025-04-14 allows reflected XSS via the lang parameter to the default URI.

Reference

https://github.com/nov-1337/CVE-2025-46657/blob/main/CVE-2025-46657.md