oitcode samarium Team Image team cross site scripting_CVE-2025-9422

4.8 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was found in oitcode samarium up to 0.9.6. This impacts an unknown function of the file /dashboard/team of the component Team Image Handler. The manipulation results in cross site scripting. The attack may be launched remotely. The exploit has been made public and could be used.

Basic Information

ID CVE-2025-9422

Source VulDB

Published Aug 25, 2025 at 22:02

Affected Product

Vendor oitcode

Product samarium

Version 0.9.0

Affected Versions oitcode samarium 0.9.0
oitcode samarium 0.9.1
oitcode samarium 0.9.2
oitcode samarium 0.9.3
oitcode samarium 0.9.4
oitcode samarium 0.9.5
oitcode samarium 0.9.6

CWE Classification

CWE-79 CWE-94

References

{
    "lastseen": "",
    "description": "A vulnerability was found in oitcode samarium up to 0.9.6. This impacts an unknown function of the file /dashboard/team of the component Team Image Handler. The manipulation results in cross site scripting. The attack may be launched remotely. The exploit has been made public and could be used.",
    "published": "2025-08-25T22:02:10.112Z",
    "modified": "2025-08-25T22:02:10.112Z",
    "type": "cve",
    "title": "oitcode samarium Team Image team cross site scripting",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.321265\nhttps://vuldb.com/?ctiid.321265\nhttps://vuldb.com/?submit.634084\nhttps://github.com/MaiqueSilva/VulnDB/blob/main/readme10.md",
    "id": "CVE-2025-9422",
    "bulletinFamily": "",
    "cwe": [
        "CWE-79",
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "oitcode samarium 0.9.0\noitcode samarium 0.9.1\noitcode samarium 0.9.2\noitcode samarium 0.9.3\noitcode samarium 0.9.4\noitcode samarium 0.9.5\noitcode samarium 0.9.6",
    "sourceHref": "",
    "cvss": {
        "score": 4.8,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "samarium",
    "version": "0.9.0",
    "vendor": "oitcode",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}