Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
12152.4%HIGH

Related CVEs

2
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2025-27921A reflected cross-site scripting (XSS) vulnerability was discovered in Output Messenger before 2.0.63, where unsanitized input could be injected into the web application’s response. This vulnerability occurs when user-controlled input is reflected back into the browser without proper sanitization or encoding.MEDIUM6.128.9%May 5, 2025
CVE-2025-27920Output Messenger before 2.0.63 was vulnerable to a directory traversal attack through improper file path handling. By using ../ sequences in parameters, attackers could access sensitive files outside the intended directory, potentially leading to configuration leakage or arbitrary file access.HIGH8.8KEV75.9%May 5, 2025