Medium severity6.3NVD Advisory· Published Feb 27, 2026· Updated Jun 4, 2026
CVE-2025-11950
CVE-2025-11950
Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in KNOWHY Advanced Technology Trading Ltd. Co. EduAsist allows Reflected XSS.
This issue affects EduAsist: before v2.1.
Affected products
3<2.1+ 1 more
- (no CPE)range: <2.1
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
2- www.usom.gov.tr/bildirim/tr-26-0086nvdThird Party Advisory
- siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0086nvd
News mentions
0No linked articles in our index yet.