CVE-2025-63644
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2026-01-14

Last updated on: 2026-01-14

Assigner: MITRE

Description
A stored cross-site scripting (XSS) vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-14
Last Modified
2026-01-14
Generated
2026-05-07
EPSS Evaluated
2026-05-05
NVD
CVE-2025-63644
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
ph7software ph7-social-dating-cms 17.9.1
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-79 The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
Attack-Flow Graph
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart