Vulnerability Details CVE-2025-12330
A security flaw has been discovered in Willow CMS up to 1.4.0. This issue affects some unknown processing of the file /admin/articles/add of the component Add Post Page. The manipulation of the argument title/body results in cross site scripting. The attack may be launched remotely. The exploit has been released to the public and may be exploited.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 11.1%
CVSS Severity
CVSS v3 Score 2.4
CVSS v2 Score 3.3
References
Products affected by CVE-2025-12330
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.0
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.1
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.10
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.11
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.12
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.13
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.14
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.15
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.16
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.17
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.18
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.19
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.2
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.20
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.21
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.22
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.23
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.24
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.25
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.26
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.27
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.28
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.29
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.3
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.30
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.31
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.32
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.33
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.34
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.4
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.5
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.6
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.7
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.8
-
cpe:2.3:a:matthewdeaves:willow_cms:1.0.9
-
cpe:2.3:a:matthewdeaves:willow_cms:1.1.0
-
cpe:2.3:a:matthewdeaves:willow_cms:1.1.1
-
cpe:2.3:a:matthewdeaves:willow_cms:1.1.2
-
cpe:2.3:a:matthewdeaves:willow_cms:1.1.3
-
cpe:2.3:a:matthewdeaves:willow_cms:1.1.4
-
cpe:2.3:a:matthewdeaves:willow_cms:1.1.5
-
cpe:2.3:a:matthewdeaves:willow_cms:1.2.0
-
cpe:2.3:a:matthewdeaves:willow_cms:1.2.1
-
cpe:2.3:a:matthewdeaves:willow_cms:1.2.2
-
cpe:2.3:a:matthewdeaves:willow_cms:1.2.3
-
cpe:2.3:a:matthewdeaves:willow_cms:1.3.0
-
cpe:2.3:a:matthewdeaves:willow_cms:1.3.1
-
cpe:2.3:a:matthewdeaves:willow_cms:1.3.2
-
cpe:2.3:a:matthewdeaves:willow_cms:1.4.0