CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Syslifters: >> Sysreptor >> 0.89 Security Vulnerabilities

CVE-2025-66561

SysReptor is a fully customizable pentest reporting platform. Prior to 2025.102, there is a Stored Cross-Site Scripting (XSS) vulnerability allows authenticated users to execute malicious JavaScript in the context of other logged-in users by uploading malicious JavaScript files in the web UI. This vulnerability is fixed in 2025.102.

CVSS Score

7.3

EPSS Score

0.0

Published

2025-12-04

Page 1

Vulnerabilities

Vulnerable Software

Syslifters: >> Sysreptor >> 0.89 Security Vulnerabilities

Products

Pricing

Contact Us