CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-30755

OpenGrok 1.14.1 has a reflected Cross-Site Scripting (XSS) issue when producing the cross reference page. This happens through improper handling of the revision parameter. The application reflects unsanitized user input into the HTML output.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.7%

CVSS Severity

CVSS v3 Score 6.1

References

https://www.oracle.com/security-alerts/all-oracle-cves-outside-other-oracle-public-documents.html

Products affected by CVE-2025-30755

Oracle » Opengrok » Version: 1.14.1

cpe:2.3:a:oracle:opengrok:1.14.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-30755

Products

Pricing

Contact Us