Home

Description

PiranhaCMS 12.0 allows stored XSS in the Text content block of Standard and Standard Archive Pages via /manager/pages, enabling execution of arbitrary JavaScript in another user s browser.

PUBLISHED Reserved 2025-08-17 | Published 2025-09-26 | Updated 2025-09-26 | Assigner mitre

References

github.com/PiranhaCMS/piranha.core/releases/tag/v12.0

github.com/...dvisories/blob/main/CVE-2025-57692/advisory.md

cve.org (CVE-2025-57692)

nvd.nist.gov (CVE-2025-57692)

Download JSON