Governalia

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2025-40700 MEDIUM PATCH This Month

Reflected Cross-Site Scripting (XSS) in IDI Eikon's Governalia. The vulnerability allows an attacker to execute JavaScript code in the victim's browser when a malicious URL with the 'q' parameter in '/search' is sent to them. This vulnerability can be exploited to steal sensitive information such as session cookies or to perform actions on behalf of the victim.

XSS Governalia

NVD

CVSS 3.1

6.1

EPSS

0.0%

CVE-2025-40700

EPSS 0% CVSS 6.1

MEDIUM PATCH This Month

Reflected Cross-Site Scripting (XSS) in IDI Eikon's Governalia. The vulnerability allows an attacker to execute JavaScript code in the victim's browser when a malicious URL with the 'q' parameter in '/search' is sent to them. This vulnerability can be exploited to steal sensitive information such as session cookies or to perform actions on behalf of the victim.

XSS Governalia

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy