CVE-2025-26530 — The question bank filter required additional sanitizing to prevent a reflected X... | CVE Daily

High CVSS 8.3

Overview

The question bank filter required additional sanitizing to prevent a reflected XSS risk.

CWE: CWE-79 Published: 2025-02-24T20:15:33.807

Risk analysis

This vulnerability is rated 🟠 HIGH.

CVSS: 8.3 (HIGH)
Detected tags: reflected_xss, xss (tag impact: MODERATE)

Recommended actions:

Sanitize reflected input and apply output encoding.
Apply context-aware output encoding.
Enable Content-Security-Policy and HttpOnly/SameSite cookies.

Recommended tools

Tags