CVE-2025-64194

Q: What is CVE-2025-64194?

the product from the vendor is impacted (CWE: unspecified).

Q: How can I mitigate CVE-2025-64194?

Upgrade immediately to the remediated release and follow vendor hardening guidance.

CVSS 6.5 Medium

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
Published: 1761729338
Last modified: 1761747359

CVE-2025-64194 — Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThimPress Eduma eduma allows Stored XSS.This issue affects Eduma: from n/a through <= 5.7.6. [Severity (CVSS) 6.5]

Related CVE by CWE

No related CWE found.

Top CVE for Vendor

No vendor taxonomy on this entry.

Recently Exploited Similar Vulnerabilities

No recent KEV-listed items for this vendor/product.

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in ThimPress Eduma eduma allows Stored XSS.This issue affects Eduma: from n/a through <= 5.7.6.

🧠 Explainer: What this vulnerability means

Summary: the product from the vendor is impacted (CWE: unspecified).

Impact: Attackers could gain unauthorized access, execute code, or disrupt services.

Mitigation: Upgrade immediately to the remediated release and follow vendor hardening guidance.

No vendor/product data yet.

No explicit mitigation/advisory links found in references.

Related CVE by CWE

Risk snapshot

Related CVE by CWE

Top CVE for Vendor

Recently Exploited Similar Vulnerabilities

🧠 Explainer: What this vulnerability means