7.1
CVSSv3

CVE-2025-22328

CVSSv4: NA | CVSSv3: 7.1 | CVSSv2: NA | VMScore: 810 | EPSS: 0.00043 | KEV: Not Included
Published: 07/01/2025 Updated: 07/01/2025

Vulnerability Summary

Stored XSS Vulnerability via CSRF in Elevio 4.4.1 and Below

A Cross-Site Request Forgery (CSRF) vulnerability is present in Elevio. This flaw allows Stored XSS. It impacts Elevio versions from an unspecified version up to 4.4.1.

Vulnerable Product Search on Vulmon Subscribe to Product

elevio elevio