VYPR
Medium severity5.4NVD Advisory· Published Oct 17, 2025· Updated Apr 15, 2026

CVE-2025-56320

CVE-2025-56320

Description

Enterprise Contract Management Portal v.22.4.0 is vulnerable to Stored Cross-Site Scripting (XSS) in its chat box component. This allows a remote attacker to execute arbitrary code. NOTE: the Supplier reports that this is "Present only in an obsolete, unsupported version no longer in circulation."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.