CVE 6.5 MEDIUM

XSS in Dataprom Informatics’ PACS-ACSS_CVE-2025-4411

August 14, 2025 invoker category_cve
6.5 / 10
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dataprom Informatics PACS-ACSS allows Cross-Site Scripting (XSS).This issue affects PACS-ACSS: before 16.05.2025.

Basic Information

ID CVE-2025-4411
Source TR-CERT
Published Jul 23, 2025 at 12:19
Modified Jul 23, 2025 at 12:56

Affected Product

Vendor Dataprom Informatics
Product PACS-ACSS
Affected Versions Dataprom Informatics PACS-ACSS 0

CWE Classification

CWE-79

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.