CVE-2025-57462

Stored cross-site scripting (xss) in machsol machpanel 8.0.32 allows attackers to execute arbitrary web scripts or HTML via a crafted PDF file.

medium 6.1 CVSS 3.1
Published: Dec 29, 2025
Modified: Dec 31, 2025
Vendor: Machsol
Product: Machpanel
Versions: 8.0.32

Description

Stored cross-site scripting (xss) in machsol machpanel 8.0.32 allows attackers to execute arbitrary web scripts or HTML via a crafted PDF file.

References

Related CVEs

CVE-2025-57460 critical · 9.8
File upload vulnerability in machsol machpanel 8.0.32 allows attacker to gain a webshell.