Vulnerability Description
A vulnerability, which was classified as problematic, was found in Eastnets PaymentSafe 2.5.26.0. This affects an unknown part of the file /directRouter.rfc of the component Edit Manual Reply Handler. The manipulation of the argument Title leads to basic cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 2.5.27.0 is able to address this issue.
CVSS Score
LOW
Related Weaknesses (CWE)
References
- https://drive.google.com/file/d/1-4BwJxzKUdVRsi6PYh68mKzeIPAqug1Q/view
- https://vuldb.com/?ctiid.298065
- https://vuldb.com/?id.298065
- https://vuldb.com/?submit.502668
FAQ
What is CVE-2025-1807?
CVE-2025-1807 is a vulnerability with a CVSS score of 3.5 (LOW). A vulnerability, which was classified as problematic, was found in Eastnets PaymentSafe 2.5.26.0. This affects an unknown part of the file /directRouter.rfc of the component Edit Manual Reply Handler....
How severe is CVE-2025-1807?
CVE-2025-1807 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-1807?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.