Medium severityNVD Advisory· Published Jun 16, 2025· Updated Apr 15, 2026
CVE-2025-40726
CVE-2025-40726
Description
Reflected Cross-Site Scripting (XSS) vulnerability in /pages/search-results-page in Nosto, which allows remote attackers to execute arbitrary code via the q GET request parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.