CVE-2025-51629_CVE-2025-51629

8.8 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Description

A cross-site scripting (XSS) vulnerability in the PdfViewer component of Agenzia Impresa Eccobook 2.81.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into...

AI Analysis

A cross-site scripting (XSS) vulnerability in the PdfViewer component of Agenzia Impresa Eccobook allows attackers to inject malicious scripts, potentially leading to data theft or session hijacking.

Visit Original Source

Basic Information

ID CVE-2025-51629

Published Aug 7, 2025 at 18:15

CWE Classification

CWE-79

AI Assessment

AI Severity High

Vendor Agenzia Impresa

Product Agenzia Impresa Eccobook

Version 2.81.1

{
    "lastseen": "2025-08-07T18:28:56",
    "description": "A cross-site scripting (XSS) vulnerability in the PdfViewer component of Agenzia Impresa Eccobook 2.81.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into...",
    "published": "2025-08-07T18:15:30",
    "modified": "2025-08-07T18:15:30",
    "type": "cve",
    "title": "CVE-2025-51629",
    "source": "",
    "references": "",
    "id": "CVE-2025-51629",
    "bulletinFamily": "cve",
    "cwe": [
        "CWE-79"
    ],
    "cvelist": [
        "CVE-2025-51629"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2025-51629",
    "category_name": "CVE",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "A cross-site scripting (XSS) vulnerability in the PdfViewer component of Agenzia Impresa Eccobook allows attackers to inject malicious scripts, potentially leading to data theft or session hijacking.",
    "ai_severity": "High",
    "ai_vendor": "Agenzia Impresa",
    "ai_product": "Agenzia Impresa Eccobook",
    "ai_version": "2.81.1",
    "ai_score": 0
}