1 results (0.001 seconds)
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2025-2361 – Mercurial SCM Web Interface cross site scripting
https://notcve.org/view.php?id=CVE-2025-2361
17 Mar 2025 — A vulnerability was found in Mercurial SCM 4.5.3/71.19.145.211. It has been declared as problematic. This vulnerability affects unknown code of the component Web Interface. The manipulation of the argument cmd leads to cross site scripting. The attack can be initiated remotely. • https://vuldb.com/?ctiid.299860 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-94: Improper Control of Generation of Code ('Code Injection') •