CVE-2025-54348 | THREATINT

Description

A Stored Cross Site Scripting (XSS) vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to hijack user’s browser, capturing sensitive information.

PUBLISHED Reserved 2025-07-21 | Published 2025-11-14 | Updated 2025-11-14 | Assigner mitre

References

desktopalert.net

desktopalert.net/cve-2025-54348/

cve.org (CVE-2025-54348)

nvd.nist.gov (CVE-2025-54348)

Download JSON