CVE-2025-65590 | THREATINT

Description

nopCommerce 4.90.0 is vulnerable to Cross Site Scripting (XSS) via the Blog posts functionality in the Content Management area.

PUBLISHED Reserved 2025-11-18 | Published 2025-12-16 | Updated 2025-12-16 | Assigner mitre

References

seclists.org/fulldisclosure/2025/Dec/17

www.nopcommerce.com/

seclists.org/fulldisclosure/2025/Dec/17

cve.org (CVE-2025-65590)

nvd.nist.gov (CVE-2025-65590)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.

help @ threatint.eu