7.1
CVSSv3

CVE-2025-22794

CVSSv4: NA | CVSSv3: 7.1 | CVSSv2: NA | VMScore: 810 | EPSS: 0.00043 | KEV: Not Included
Published: 04/02/2025 Updated: 04/02/2025

Vulnerability Summary

Reflected XSS Vulnerability in Landoweb Programador World Cup Predictor

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Landoweb Programador World Cup Predictor allows Reflected XSS. This issue affects World Cup Predictor: from n/a up to and including 1.9.6.

Vulnerable Product Search on Vulmon Subscribe to Product

landoweb programador world cup predictor