Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2025-12437 | Karaz Karazal through 2025-04-14 allows reflected XSS via the lang parameter to the default URI. |
Mon, 12 May 2025 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Karaz
Karaz karazal |
|
| CPEs | cpe:2.3:a:karaz:karazal:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Karaz
Karaz karazal |
Mon, 28 Apr 2025 17:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Sun, 27 Apr 2025 16:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-79 | |
| Metrics |
cvssV3_1
|
Sun, 27 Apr 2025 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Karaz Karazal through 2025-04-14 allows reflected XSS via the lang parameter to the default URI. | |
| References |
|
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2025-04-28T16:19:40.784Z
Reserved: 2025-04-26T00:00:00.000Z
Link: CVE-2025-46657
Updated: 2025-04-28T16:14:06.035Z
Status : Analyzed
Published: 2025-04-27T16:15:15.613
Modified: 2026-06-17T09:26:47.250
Link: CVE-2025-46657
No data.
OpenCVE Enrichment
No data.
EUVD