CVE-2025-45316

Published
View on NVD ↗
CVSS v3
6.1
MEDIUM
CVSS v2
N/A
Affected
2
PROJECTS

Description

A cross-site scripting (XSS) vulnerability in the TextBlockModule.php component of hortusfox-web v4.4 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the name parameter.

chrisWalker11/Cves
chrisWalker11/Cves
GitHubGitHub
danielbrendel/hortusfox-web
danielbrendel/hortusfox-web
Self-hosted collaborative plant management and tracking system for plant enthusiasts
GitHubGitHub
1.55K