CVE-2025-63498 – Alinto SOGo Cross Site Scripting (XSS)

CVE ID : CVE-2025-63498

Published : Nov. 24, 2025, 9:16 p.m. | 2 hours, 6 minutes ago

Description : alinto SOGo 5.12.3 is vulnerable to Cross Site Scripting (XSS) via the “userName” parameter.

Severity: 6.1 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…