XSS Vulnerability due to insufficient input validation

Kripa Thapa

November 28, 2025 10:40

Follow

Advisory ID: LVD-2025-001

CVSSv 3.1 Vector: AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CVSSv 3.1 Base Score: 8.5

Severity: High

CVE: CVE-2025-66359

CWE: CWE-79

Date Published: 2025-07-28

Description:

Insufficient input validation and a lack of output escaping in multiple components led to a cross-site scripting (XSS) vulnerability.

Affected Product:

Logpoint versions before 7.7.0.

Solution:

Upgrade to Logpoint v7.7.0.

Comments

Article is closed for comments.

By clicking “I Agree & Download”, you confirm that you have reviewed the prerequisites and key information for Logpoint version 7.8.0. You acknowledge that this version requires firewall port 8443 to be opened in environments where a firewall exists between distributed Logpoint components (for example, between nodes or collectors). Failure to apply the required firewall changes may impact system functionality.
For more details, please review the following article:
https://servicedesk.logpoint.com/hc/en-us/articles/33742792586653-Change-in-LP-LP-Communication-Firewall-Requirement-from-7-8-0

Please ensure that all prerequisite requirements are met before proceeding with this installation or upgrade.

Cancel I Agree & Download

Privacy policy EULA Terms of service

Note: We use cookies that are essential for the smooth functioning of our website.

Comments

Related articles