CVE-2025-23522 – HM Portfolio Cross-site Scripting (XSS)

CVE ID : CVE-2025-23522

Published : Jan. 24, 2025, 11:15 a.m. | 1 hour, 1 minute ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in humanmade limited, Joe Hoyle, Tom Wilmott, Matthew Haines-Young HM Portfolio allows Reflected XSS. This issue affects HM Portfolio: from n/a through 1.1.1.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-23522 – HM Portfolio Cross-site Scripting (XSS)