CVE-2025-4376
Cross-Site Scripting vulnerability in Model Search in Pro Cloud Server's WebEA
We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Cross-Site Scripting vulnerability in Model Search in Pro Cloud Server's WebEA
Improper Input Validation vulnerability in Sparx Systems Pro Cloud Server's WebEA model search field allows Cross-Site Scripting (XSS). This issue affects Pro Cloud Server: earlier than 6.0.165.
Reserved 2025-05-06 | Published 2025-05-09 | Updated 2025-05-09 | Assigner NCSC-FICWE-20 Improper Input Validation
Santeri Siirilä
Mikko Korpi
sparxsystems.com/products/procloudserver/6.1/
Support options
