CVE-2025-66359

Description

An issue was discovered in Logpoint before 7.7.0. Insufficient input validation and a lack of output escaping in multiple components leads to a cross-site scripting (XSS) vulnerability.

PUBLISHED Reserved 2025-11-27 | Published 2025-11-27 | Updated 2025-11-28 | Assigner mitre

Problem types

CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')

Product status

References

servicedesk.logpoint.com/...to-insufficient-input-validation

cve.org (CVE-2025-66359)

nvd.nist.gov (CVE-2025-66359)

Download JSON