VYPR
Medium severity5.4NVD Advisory· Published Jun 10, 2025· Updated Apr 15, 2026

CVE-2025-3899

CVE-2025-3899

Description

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists in Certificates page on Webserver that could cause an unvalidated data injected by authenticated malicious user leading to modify or read data in a victim’s browser.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.