216.73.216.86

CVE-2025-54316

· Published 20/07/2025 19:15 · Modified 20/07/2025 19:15

Labels: CVE-2025-54316 2025-07-20CVE-2025-54316CWE-79[email protected]

Essential information

Published
20/07/2025 19:15
Modified
20/07/2025 19:15
Author
Creator
CVSS
4.9 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N

CVSS metrics

Description

An issue was discovered in Logpoint before 7.6.0. When creating reports, attackers can create custom Jinja templates that chained built-in filter functions to generate XSS payloads. These payloads can be rendered by the Logpoint Report Template engine, making it vulnerable to cross-site scripting (XSS) attacks.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
logpoint / logpoint cpe:2.3:a:logpoint:logpoint:<7.6.0:*:*:*:*:*:*:*

References