CVE-2025-59524 | horilla up to 1.3.x cross site scripting (GHSA-mff9-p8j9-9v5q)

September 24, 2025 Yanac

A vulnerability has been found in horilla up to 1.3.x and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-59524. It is possible to initiate the attack remotely. There is no exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More

CVE-2025-57347 | dagre-d3-es up to 7.0.9 prototype pollution (Issue 52)
CVE-2025-57354 | Node.js up to 0.18.6 counterpart translate prototype pollution (Issue 54)