CVE-2025-60298 | Novel-Plus up to 5.2.4 /author/updateIndexName indexName cross site scripting

A vulnerability classified as problematic was found in Novel-Plus up to 5.2.4. Affected by this issue is some unknown functionality of the file /author/updateIndexName. Such manipulation of the argument indexName leads to cross site scripting.

This vulnerability is traded as CVE-2025-60298. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More