VYPR
Medium severityNVD Advisory· Published May 9, 2025· Updated Jun 17, 2026

CVE-2025-4376

CVE-2025-4376

Description

Improper Input Validation vulnerability in Sparx Systems Pro Cloud Server's WebEA model search field allows Cross-Site Scripting (XSS). This issue affects Pro Cloud Server: earlier than 6.0.165.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.