Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in DivvyDrive Information Technologies Inc. Digital Corporate Warehouse allows Stored XSS.This issue affects Digital Corporate Warehouse: before v.4.8.2.22.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Divvydrive |
|
No data.
No data.
References
| Link | Providers |
|---|---|
| https://www.usom.gov.tr/bildirim/tr-25-0393 |
|
History
Wed, 12 Nov 2025 23:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Divvydrive
Divvydrive digital Corporate Warehouse |
|
| Vendors & Products |
Divvydrive
Divvydrive digital Corporate Warehouse |
Wed, 12 Nov 2025 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 12 Nov 2025 09:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in DivvyDrive Information Technologies Inc. Digital Corporate Warehouse allows Stored XSS.This issue affects Digital Corporate Warehouse: before v.4.8.2.22. | |
| Title | Stored XSS in DivvyDrive Information Technologies' Digital Corporate Warehouse | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: TR-CERT
Published: 2025-11-12T09:14:06.478Z
Updated: 2025-11-12T16:01:08.440Z
Reserved: 2025-10-20T14:09:11.782Z
Link: CVE-2025-11962
Vulnrichment
Updated: 2025-11-12T15:41:18.394Z
NVD
Status : Awaiting Analysis
Published: 2025-11-12T10:15:42.880
Modified: 2025-11-12T16:19:12.850
Link: CVE-2025-11962
Redhat
No data.