Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2025-12374 | Stored XSS in Discussions in OpenText Content Management CE 20.2 to 25.1 on Windows and Linux allows authenticated malicious users to inject code into the system. |
Mon, 21 Apr 2025 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Mon, 21 Apr 2025 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Stored XSS in Discussions in OpenText Content Management CE 20.2 to 25.1 on Windows and Linux allows authenticated malicious users to inject code into the system. | |
| Title | Stored XSS in Discussions functionality | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV4_0
|
Subscriptions
No data.
Status: PUBLISHED
Assigner: OpenText
Published:
Updated: 2025-04-21T15:24:29.951Z
Reserved: 2024-12-20T18:07:11.848Z
Link: CVE-2024-12863
Updated: 2025-04-21T15:24:26.178Z
Status : Deferred
Published: 2025-04-21T15:15:58.070
Modified: 2026-06-17T07:00:39.587
Link: CVE-2024-12863
No data.
OpenCVE Enrichment
No data.
EUVD