Home

Description

Emoncms 11.7.3 is vulnerable to Cross Site in the input handling mechanism. This vulnerability allows authenticated attackers with API access to inject malicious JavaScript code that executes when administrators view the application logs.

PUBLISHED Reserved 2025-09-26 | Published 2025-10-24 | Updated 2025-10-24 | Assigner mitre

References

github.com/emoncms/emoncms/issues/1940

cve.org (CVE-2025-60936)

nvd.nist.gov (CVE-2025-60936)

Download JSON