Unrated severityNVD Advisory· Published Jul 10, 2025· Updated Jul 11, 2025

CVE-2025-28245

Description

Cross-site scripting (XSS) vulnerability in Alteryx Server 2023.1.1.460 allows remote attackers to inject arbitrary web script or HTML via the notification body.

Affected products

Alteryx/Serverdescription
Activepdf/Serverllm-fuzzy
Range: = 2023.1.1.460

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

alteryx.commitre
gist.github.com/DylanGrl/5e0ac3924f4d939e9c1ebb8632f2851bmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000