CVE-2025-61674 | October CMS up to 3.7.12/4.0.11 cross site scripting (GHSA-gxxc-m74c-f48x)

A vulnerability was found in October CMS up to 3.7.12/4.0.11 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation results in cross site scripting.

This vulnerability was named CVE-2025-61674. The attack may be performed from remote. There is no available exploit.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More