Home

Description

A stored cross-site scripting (XSS) in Kissflow Work Platform Kissflow Application Versions 7337 Account v2.0 to v4.2vallows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload.

PUBLISHED Reserved 2025-08-17 | Published 2025-10-01 | Updated 2025-10-01 | Assigner mitre

References

kissflow.com

github.com/...wByte1/CVE-Reports/blob/main/CVE-2025-57393.md

cve.org (CVE-2025-57393)

nvd.nist.gov (CVE-2025-57393)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.