Medium severityNVD Advisory· Published May 23, 2025· Updated Apr 15, 2026
CVE-2025-4379
CVE-2025-4379
Description
DobryCMS in versions 2.* and lower is vulnerable to Reflected Cross-Site Scripting (XSS). Improper input validation in szukaj parameter allows arbitrary JavaScript to be executed on victim's browser when specially crafted URL is opened.
A hotfix for affected versions was released on 29.04.2025. It removes the vulnerability without incrementing the version.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <= 2.*
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.