CVE-2025-63498 | Alinto SOGo 5.12.3 Username cross site scripting

November 25, 2025 Yanac

A vulnerability classified as problematic was found in Alinto SOGo 5.12.3. This impacts an unknown function. Such manipulation of the argument Username leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-63498. The attack can be launched remotely. No exploit exists.

It is advisable to implement a patch to correct this issue.VulDB Recent EntriesRead More

CVE-2025-48511 | AMD μProf up to 4.x improper validation of specified index, position, or offset in input
CVE-2025-29933 | AMD μProf up to 5.0 out-of-bounds write