CVE-2025-44115 | THREATINT

Description

A vulnerability has been found in Cotonti Siena v0.9.25. Affected by this vulnerability is the file /admin.php?m=config&n=edit&o=core&p=title. The manipulation of the value of title leads to cross-site scripting.

PUBLISHED Reserved 2025-04-22 | Published 2025-06-02 | Updated 2025-06-02 | Assigner mitre

References

github.com/Cotonti/Cotonti/issues/1650

github.com/Cotonti/Cotonti/issues/1834

gist.github.com/yA0-Z/9666b1a333607381ab8dfcc137f2b65c

cve.org (CVE-2025-44115)

nvd.nist.gov (CVE-2025-44115)

Download JSON