7.1
/ 10
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in skygroup Enzy enzy allows Reflected XSS.This issue affects Enzy: from n/a through < 1.6.4.
Basic Information
ID
CVE-2025-58964
Source
Patchstack
Published
Nov 6, 2025 at 15:54
Modified
Nov 17, 2025 at 16:32
Affected Product
Vendor
skygroup
Product
Enzy
Version
n/a
Affected Versions
skygroup Enzy n/a