CVE-2025-22917

Published: 2025-01-28T22:15Z

Last Modified: 2025-01-29T16:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

A reflected cross-site scripting (XSS) vulnerability in Audemium ERP <=0.9.0 allows remote attackers to execute an arbitrary JavaScript payload in the web browser of a user by including a malicious payload into the 'type' parameter of list.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt