CVE-2025-60299 | Novel-Plus up to 5.2.0 /book/addCommentReply replyContent cross site scripting

A vulnerability, which was classified as problematic, has been found in Novel-Plus up to 5.2.0. This affects an unknown part of the file /book/addCommentReply. Performing manipulation of the argument replyContent results in cross site scripting.

This vulnerability is known as CVE-2025-60299. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More