CVE-2025-2617

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://gitee.com/yangyouwang/crud/issues/IBSPOX", "name": "https://gitee.com/yangyouwang/crud/issues/IBSPOX", "tags": [], "refsource": ""}, {"url": "https://vuldb.com/?ctiid.300619", "name": "VDB-300619 | CTI Indicators (IOB, IOC, TTP)", "tags": [], "refsource": ""}, {"url": "https://vuldb.com/?id.300619", "name": "VDB-300619 | yangyouwang ??? crud ???????? Department Page cross site scripting", "tags": [], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "A vulnerability classified as problematic was found in yangyouwang ??? crud ???????? 1.0.0. Affected by this vulnerability is an unknown functionality of the component Department Page. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-79"}, {"lang": "en", "value": "CWE-94"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2025-2617", "ASSIGNER": "cna@vuldb.com"}}, "impact": {"baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 2.4, "attackVector": "NETWORK", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 0.9}}, "publishedDate": "2025-03-22T13:15Z", "configurations": {"nodes": [], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-03-22T13:15Z"}