Cross-site scripting (XSS) vulnerability in the component /common/reports of Akaunting v3.1.18 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the name parameter.
Metrics
Affected Vendors & Products
References
History
Sat, 23 Aug 2025 11:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Akaunting
Akaunting akaunting |
|
Vendors & Products |
Akaunting
Akaunting akaunting |
Thu, 21 Aug 2025 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-79 | |
Metrics |
cvssV3_1
|
Thu, 21 Aug 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Cross-site scripting (XSS) vulnerability in the component /common/reports of Akaunting v3.1.18 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the name parameter. | |
References |
|

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2025-08-21T19:10:36.062Z
Reserved: 2025-08-13T00:00:00.000Z
Link: CVE-2025-55522

Updated: 2025-08-21T19:10:27.296Z

Status : Awaiting Analysis
Published: 2025-08-21T17:15:31.277
Modified: 2025-08-22T18:08:51.663
Link: CVE-2025-55522

No data.

Updated: 2025-08-23T10:55:39Z