Medium severity4.7NVD Advisory· Published May 5, 2026· Updated May 12, 2026
CVE-2025-52206
CVE-2025-52206
Description
ISPConfig 3.3.0 is vulnerable to Cross Site Scripting (XSS) via the system status webpage.
Affected products
1- Range: = 3.3.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.ispconfig.org/blog/ispconfig-3-3-0p2-released-security-update/nvdPatchRelease Notes
- ispconfig.comnvdProduct
News mentions
0No linked articles in our index yet.