VYPR
Unrated severityNVD Advisory· Published Sep 25, 2025· Updated Oct 28, 2025

Monkeytype Vulnerable to Self-XSS on loading saved custom text

CVE-2025-59838

Description

Monkeytype is a minimalistic and customizable typing test. In versions 25.36.0 and prior, improper handling of user input when loading a saved custom text results in XSS. This issue has been fixed in version 25.44.0.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.