CVE-2025-12776P4MEDIUMCVSS 5.4≥ 11.32.0, ≤ 11.32.*·≥ 11.36.0, ≤ 11.36.*2026-01-07
CVE-2025-12776 [MEDIUM] CWE-79 CVE-2025-12776: The Report Builder component of the application stores user input directly in a web page and display
The Report Builder component of the application stores user input directly in a web page and displays it to other users, which raised concerns about a possible Cross-Site Scripting (XSS) attack. Proper management of this functionality helps ensure a secure and seamless user experience. Although the user input is not validated in the report creation,
nvd