Unrated severityNVD Advisory· Published Mar 6, 2025· Updated Mar 6, 2025
Group-Office has a Stored XSS Vulnerability via user's name field
CVE-2025-25191
Description
Group-Office is an enterprise CRM and groupware tool. This Stored XSS vulnerability exists where user input in the Name field is not properly sanitized before being stored. This vulnerability is fixed in 6.8.100.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <6.8.100
- Range: < 6.8.100
Patches
Vulnerability mechanics
References
2- github.com/Intermesh/groupoffice/commit/c5c83e19a5cdf93b0e758726c97597861f1d6edamitrex_refsource_MISC
- github.com/Intermesh/groupoffice/security/advisories/GHSA-j7p3-v652-p3gfmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.