CVE-2025-63499

Published December 4th, 2025

View on NVD ↗

CVSS v3

6.1

MEDIUM

CVSS v2

N/A

Affected

1

PROJECT

Description

Alinto Sogo 5.12.3 is vulnerable to Cross Site Scripting (XSS) via the theme parameter.

poblaguev-tot/CVE-2025-63499

POC for CVE-2025-63499

GitHub

1