CVE-2025-65187 | CiviCRM up to 6.6 Accounting Batches cross site scripting

A vulnerability categorized as problematic has been discovered in CiviCRM up to 6.6. Affected by this issue is some unknown functionality. The manipulation of the argument Accounting Batches results in cross site scripting.

This vulnerability is cataloged as CVE-2025-65187. The attack may be launched remotely. There is no exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More