Kubysoft

3 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-59905 MEDIUM This Month

Cross-Site Scripting (XSS) vulnerability reflected in Kubysoft, which occurs through multiple parameters within the endpoint ‘/node/kudaby/nodeFN/procedure’. [CVSS 6.1 MEDIUM]

XSS Kubysoft
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-59904 MEDIUM This Month

Stored Cross-Site Scripting (XSS) vulnerability in Kubysoft, which is triggered through multiple parameters in the '/kForms/app' endpoint. This issue allows malicious scripts to be injected and executed persistently in the context of users accessing the affected resource. [CVSS 5.4 MEDIUM]

XSS Kubysoft
NVD
CVSS 3.1
5.4
EPSS
0.0%
CVE-2025-59903 MEDIUM This Month

Stored Cross-Site Scripting (XSS) vulnerability in Kubysoft, where uploaded SVG images are not properly sanitized. [CVSS 5.4 MEDIUM]

XSS Kubysoft
NVD
CVSS 3.1
5.4
EPSS
0.0%
CVE-2025-59905
EPSS 0% CVSS 6.1
MEDIUM This Month

Cross-Site Scripting (XSS) vulnerability reflected in Kubysoft, which occurs through multiple parameters within the endpoint ‘/node/kudaby/nodeFN/procedure’. [CVSS 6.1 MEDIUM]

XSS Kubysoft
NVD
CVE-2025-59904
EPSS 0% CVSS 5.4
MEDIUM This Month

Stored Cross-Site Scripting (XSS) vulnerability in Kubysoft, which is triggered through multiple parameters in the '/kForms/app' endpoint. This issue allows malicious scripts to be injected and executed persistently in the context of users accessing the affected resource. [CVSS 5.4 MEDIUM]

XSS Kubysoft
NVD
CVE-2025-59903
EPSS 0% CVSS 5.4
MEDIUM This Month

Stored Cross-Site Scripting (XSS) vulnerability in Kubysoft, where uploaded SVG images are not properly sanitized. [CVSS 5.4 MEDIUM]

XSS Kubysoft
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy