Vulnerability Details CVE-2025-41681
A high privileged remote attacker can gain persistent XSS via POST requests due to improper neutralization of special elements used to create dynamic content.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 15.3%
CVSS Severity
CVSS v3 Score 4.8
References
Products affected by CVE-2025-41681
-
cpe:2.3:h:mbconnectline:mbnet.mini:-
-
cpe:2.3:o:mbconnectline:mbnet.mini_firmware:-
-
cpe:2.3:o:mbconnectline:mbnet.mini_firmware:2.2.13
-
cpe:2.3:o:mbconnectline:mbnet.mini_firmware:2.3.1