VYPR
Unrated severityOSV Advisory· Published Dec 15, 2025· Updated Dec 16, 2025

CVE-2025-51962

CVE-2025-51962

Description

A HTML Injection vulnerability in the comment section of the project page in MicroStudio 24.01.29 allows remote attackers to inject arbitrary web script or HTML via the text parameter of add_project_comment function.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Pmgl/MicrostudioOSV2 versions
    21.11.00, 21.12.00, 21.12.01, …+ 1 more
    • (no CPE)range: 21.11.00, 21.12.00, 21.12.01, …
    • (no CPE)range: =24.01.29

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.