CVE-2025-51624
HIGH EPSS 23.0%
Published Aug 6, 202510mo ago ยท Modified Jun 17, 20261w ago
7.6 CVSS 3.1
Published Aug 6, 2025 10mo ago
Last Modified Jun 17, 2026 1w ago
Description
Cross-site scripting (XSS) vulnerability in Zone Bitaqati thru 3.4.0.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L Attack Vector Network
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity Low
Availability Low
Threat Intelligence
EPSS Exploit Probability
23.0% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-79 Cross-site Scripting Injection
References 4
- bitaqati.com http://bitaqati.com
- zone.com http://zone.com
- medium.com https://medium.com/@a77777mad/cross-site-scripting-xss-vulnerability-in-zone-bitaqati-v3-4-0-a05b980b4df4
- zone.net.sa https://zone.net.sa/bitaqati-self-service/
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.