CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-67290

A stored cross-site scripting (XSS) vulnerability in the Page Settings module of Piranha CMS v12.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Excerpt field.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.7%

CVSS Severity

CVSS v3 Score 6.1

References

http://piranha.com
https://github.com/vuquyen03/CVE/tree/main/CVE-2025-67290

Products affected by CVE-2025-67290

Dotnetfoundation » Piranha Cms » Version: 12.1

cpe:2.3:a:dotnetfoundation:piranha_cms:12.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-67290

Products

Pricing

Contact Us