cvedb.io
CVE-2025-67443
MEDIUM · CVSS 6.1
EPSS exploitation probability: 0%
Published 2025-12-22T17:15:59.913 · Last modified 2026-06-17T09:57:40.217

Summary

Schlix CMS before v2.2.9-5 is vulnerable to Cross Site Scripting (XSS). Due to lack of javascript sanitization in the login form, incorrect login attempts in logs are triggered as XSS in the admin panel.

Affected products

schlix — cms

Does this affect you?

Add your gear to cvedb and we'll alert you only when schlix ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.