CVE-2025-48366

May 22, 2025 invoker category_cve

CVE Details

Basic Information

Title CVE-2025-48366
Type cve
Published 2025-05-22T18:15:43
Last Seen 2025-05-22T18:27:52

CVSS Information

Base Score 0.0 ()
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact

AI Analysis

AI Description A stored and blind XSS vulnerability exists in the Phone Number field of the user profile in Group-Office versions prior to 6.8.119 and 25.0.20.
AI Severity Medium
Vendor Group-Office
Product Group-Office
Affected Version 6.8.119, 25.0.20

Additional Information

CVE List CVE-2025-48366
CWE List CWE-87, CWE-79
Bulletin Family cve

Description

Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.119 and 25.0.20, a stored and blind XSS vulnerability exists in the Phone Number field of the user profile…

CVSS Score Summary

Base Score: %!f(string=#) ()

View Full CVE Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.