Medium severity6.1NVD Advisory· Published Oct 30, 2025· Updated Apr 15, 2026
CVE-2025-52179
CVE-2025-52179
Description
Cross-site scripting (XSS) vulnerability in Zucchetti Ad Hoc Revolution 4.1 and earlier allows remote unauthenticated attackers to inject arbitrary JavaScript via the pHtmlSource parameter of the /ahrw/jsp/gsfr_feditorHTML.jsp endpoint.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <=4.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.