CVE-2025-57292 | Todoist 8484 Avatar cross site scripting

September 26, 2025 Yanac

A vulnerability was found in Todoist 8484. It has been rated as problematic. This impacts an unknown function of the component Avatar Handler. This manipulation causes cross site scripting.

This vulnerability is tracked as CVE-2025-57292. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-45994 | Aranda PassRecovery 1.0 HTTP POST Request /user/existdirectory/1 information disclosure
CVE-2025-6396 | Webbeyaz Website Design Website Software up to 2025.07.14 cross site scripting