CVE-2025-32809 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

W. W. Norton InQuizitive through 2025-04-08 allows students to conduct stored XSS attacks against educators via a bonus description, feedback.choice_fb[], or qu…
Medium CVSS: 6.4

CVE-2025-32809

W. W. Norton InQuizitive through 2025-04-08 allows students to conduct stored XSS attacks against educators via a bonus description, feedback.choice_fb[], or question_id.
Vendor
Wwnorton
Product
Inquizitive
CWE
CWE-79
Yayın Tarihi
2025-04-11 01:15:55
Güncelleme
2025-10-30 18:59:54
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-79 Inquizitive MEDIUM Wwnorton 2025

Referanslar

https://medium.com/@JIT_Shellcode/inquizitive-client-side-injection-lms-trust-bypass-and-stored-xss-0ea4da8d22fa https://medium.com/@JIT_Shellcode/inquizitive-client-side-injection-lms-trust-bypass-and-stored-xss-0ea4da8d22fa