VYPR
Medium severity5.4GHSA Advisory· Published Nov 30, 2025· Updated Apr 15, 2026

CVE-2025-66421

CVE-2025-66421

Description

Tryton sao (aka tryton-sao) before 7.6.11 allows XSS because it does not escape completion values. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.69.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
tryton-saonpm
>= 7.5.0, < 7.6.117.6.11
tryton-saonpm
>= 7.1.0, < 7.4.217.4.21
tryton-saonpm
>= 7.0.0, < 7.0.407.0.40
tryton-saonpm
< 6.0.696.0.69

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.

CVE-2025-66421 · Medium · VYPR