VYPR
High severity8.6NVD Advisory· Published Jan 30, 2025· Updated Jun 17, 2026

CVE-2025-0747

CVE-2025-0747

Description

A Stored Cross-Site Scripting vulnerability has been found in EmbedAI. This vulnerability allows an authenticated attacker to inject a malicious JavaScript code into a message that will be executed when a user opens the chat.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • EmbedAI/EmbedAIllm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.