{"id":63879,"date":"2025-05-29T01:31:31","date_gmt":"2025-05-28T22:01:31","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-27706-absolute-secure-access-cross-site-scripting\/"},"modified":"2025-05-29T01:31:31","modified_gmt":"2025-05-28T22:01:31","slug":"cve-2025-27706-absolute-secure-access-cross-site-scripting","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-27706-absolute-secure-access-cross-site-scripting\/","title":{"rendered":"CVE-2025-27706 &#8211; Absolute Secure Access Cross-Site Scripting"},"content":{"rendered":"<p><strong>CVE ID : <\/strong>CVE-2025-27706<br \/>\n<br \/>\n<strong>Published : <\/strong> May 28, 2025, 9:15 p.m. | 29\u00a0minutes ago<br \/>\n<br \/>\n<strong>Description : <\/strong>CVE-2025-27706 is a cross-site scripting vulnerability in the management<br \/>\n console of Absolute Secure Access prior to version 13.54. Attackers<br \/>\nwith system administrator permissions can interfere with another system<br \/>\nadministrator\u2019s use of the management console when the second<br \/>\nadministrator visits the page. Attack complexity is low, there are no<br \/>\npreexisting attack requirements, privileges required are high and active<br \/>\n user interaction is required. There is no impact on confidentiality,<br \/>\nthe impact on integrity is low and there is no impact on availability.<br \/>\n<br \/>\n<strong>Severity:<\/strong> 0.0 | NA<br \/>\n<br \/>\nVisit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-27706 Published : May 28, 2025, 9:15 p.m. | 29\u00a0minutes ago Description : CVE-2025-27706 is a cross-site scripting vulnerability in the management console of Absolute Secure Access prior to version 13.54. Attackers with system administrator permissions can interfere with another system administrator\u2019s use of the management console when the second administrator visits &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-63879","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/63879","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=63879"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/63879\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=63879"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=63879"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=63879"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}