CVE-2025-22805 – ThemePoints Skill Bar Cross-site Scripting (Stored XSS)

1月 9, 2025
5:16 pm

CVE ID : CVE-2025-22805

Published : Jan. 9, 2025, 4:16 p.m. | 59 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in ThemePoints Skill Bar allows Stored XSS.This issue affects Skill Bar: from n/a through 1.2.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-22805 – ThemePoints Skill Bar Cross-site Scripting (Stored XSS)

Elvescore.io

Recent Posts

CVE-2025-21628 – Chatwoot SQL Injection Vulnerability

CVE-2025-22149 – OpenJWKSetCacheReplacementVulnerability

CVE-2025-21592 – Juniper Networks Junos OS SRX Series Information Disclosure Vulnerability

CVE-2025-21593 – “Juniper Networks Junos OS and Junos OS Evolved SRv6 BGP UPDATE Packet Denial-of-Service Vulnerability”

CVE-2025-21596 – Juniper Networks Junos OS SRX1500, SRX4100, SRX4200 Denial of Service (DoS) Command Injectionunga

CVE-2025-21599 – Juniper Networks Junos OS Evolved IPv6 Malformed Packet Memory Exhaustion Denial of Service

CVE-2025-22805 – ThemePoints Skill Bar Cross-site Scripting (Stored XSS)

CVE-2025-22805 – ThemePoints Skill Bar Cross-site Scripting (Stored XSS)