CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-51962

A HTML Injection vulnerability in the comment section of the project page in MicroStudio 24.01.29 allows remote attackers to inject arbitrary web script or HTML via the text parameter of add_project_comment function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.7%

CVSS Severity

CVSS v3 Score 6.1

References

https://github.com/Sunnyshineshow/vulnerability-research/blob/main/CVE-2025-51962/CVE-2025-51962.md
https://github.com/pmgl/microstudio/

Products affected by CVE-2025-51962

Microstudio » Microstudio » Version: 24.01.29

cpe:2.3:a:microstudio:microstudio:24.01.29

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-51962

Products

Pricing

Contact Us