CVE-2025-53834 Information
Jul 15, 2025
cve
Description
Caido is a web security auditing toolkit. A reflected cross-site scripting (XSS) vulnerability was discovered in Caido’s toast UI component in versions prior to 0.49.0. Toast messages may reflect unsanitized user input in certain tools such as Match&Replace and Scope. This could allow an attacker to craft input that results in arbitrary script execution. Version 0.49.0 fixes the issue.
Reference
https://github.com/caido/caido/releases/tag/v0.49.0 https://github.com/caido/caido/security/advisories/GHSA-h8jr-c6qq-h7m7
Related CNNVD
CNNVD-202507-1928 (Published: 2025-07-14)
Share on: