Unrated severityOSV Advisory· Published Jan 15, 2026· Updated Jan 15, 2026
CVE-2025-65368
CVE-2025-65368
Description
SparkyFitness v0.15.8.2 is vulnerable to Cross Site Scripting (XSS) via user input and LLM output.
Affected products
1- Range: v0.01, v0.02, v0.03, …
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.