Unrated severityNVD Advisory· Published Oct 24, 2025· Updated Oct 24, 2025

CVE-2025-60936

Description

Emoncms 11.7.3 is vulnerable to Cross Site in the input handling mechanism. This vulnerability allows authenticated attackers with API access to inject malicious JavaScript code that executes when administrators view the application logs.

Affected products

Emoncms/Emoncmsdescription
Openenergymonitor/Emoncmsllm-fuzzy
Range: = 11.7.3

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/emoncms/emoncms/issues/1940mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000