CVE-2025-55742

Published
View on NVD ↗
CVSS v3
8
HIGH
CVSS v2
N/A
Affected
1
PROJECT

Description

UnoPim is an open-source Product Information Management (PIM) system built on the Laravel framework. Before 0.2.1, UnoPim contains a stored cross-site scripting vulnerability via SVG MIME/sanitizer bypass in the /admin/settings/users/create endpoint. This vulnerability is fixed in 0.2.1.

unopim/unopim
unopim/unopim
Unopim is a free and open-source Laravel-based Product Information Management (PIM) system that helps businesses manage and enrich product data from a single platform. Built to scale beyond 10M+ products, now evolving with Agentic PIM capabilities.
GitHubGitHub
10.3K