Security Advisory - IXSA-20250429-01
| Advisory ID |
IXSA-20250429-01 |
| Version |
1.0 |
| Last updated |
29.04.2025 |
| Published |
29.04.2025 |
| Status |
Resolved |
| CVEs |
CVE-2025-47201 |
| Summary |
Cross-Site-Scripting Vulnerability in multiple Velocity-Scripts. |
| Type/Severity |
High |
| Description |
In Intrexx Portal Server multiple Velocity-Scripts are susceptible to the execution of not requested Java Script code in HTML ("Cross-Site-Scripting"). |
| Solution |
Please install Intrexx version 12.0.4. |
| Affected Products |
- Intrexx Portal Server <= 12.0.3
|
| Fixes |
- Intrexx Version 12.0.4 (12.0.4.20250409), Released on 09.04.2025
|
| References |
|