CVE-2025-51624

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-51624
Cross-site scripting (XSS) vulnerability in Zone Bitaqati thru 3.4.0.

7.6 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 4.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References
Link Resource
http://bitaqati.com
http://zone.com
https://medium.com/@a77777mad/cross-site-scripting-xss-vulnerability-in-zone-bitaqati-v3-4-0-a05b980b4df4
https://zone.net.sa/bitaqati-self-service/
Configurations

No configuration.

History

06 Aug 2025, 20:23

Type Values Removed Values Added
New CVE
Information

Published : 2025-08-06 20:15

Updated : 2025-08-06 20:23

NVD link : CVE-2025-51624

Mitre link : CVE-2025-51624

CVE.ORG link : CVE-2025-51624

JSON object : View

Products Affected

No product.

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')