Medium severity5.4NVD Advisory· Published Nov 19, 2025· Updated Jun 4, 2026
CVE-2025-11963
CVE-2025-11963
Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Saysis Computer Systems Trade Ltd. Co. StarCities allows Reflected XSS.
This issue affects StarCities: before 1.1.61.
Affected products
2<1.1.61+ 1 more
- (no CPE)range: <1.1.61
- (no CPE)range: <1.1.61
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.