CVE-2025-40834 | Siemens Mendix RichText up to 4.6.0 Widget cross site scripting (ssa-190588)

A vulnerability was found in Siemens Mendix RichText up to 4.6.0. It has been rated as problematic. This issue affects some unknown processing of the component Widget. The manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2025-40834. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is advised.VulDB Recent EntriesRead More