Secsys-FDU/CVE-2025-51864

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-51864 ↗	Jul 22, 2025Tuesday, 22 July 2025, 15:15	6.5 MEDIUM	—
A reflected cross-site scripting (XSS) vulnerability exists in AIBOX LLM chat (chat.aibox365.cn) through 2025-05-27, allowing attackers to hijack accounts through stolen JWT tokens.