Open Source Social Network (OSSN) 8.6 is vulnerable to Cross Site Scripting (XSS) via the parameter param` at endpoint u/administrator/friends.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/63xxx/CVE-2025-63441.json",
"cna_assigner": "mitre"
}{
"source": [
"CPE_STRING",
"REFERENCES"
],
"cpe": "cpe:2.3:a:opensource-socialnetwork:open_source_social_network:8.6:*:*:*:*:*:*:*",
"extracted_events": [
{
"introduced": "8.6"
},
{
"last_affected": "8.6"
}
]
}