A security flaw has been discovered in Rebuild up to 4.1.3, affecting the Comment/Guestbook component. Manipulation can lead to cross site scripting attacks, which can be initiated remotely. Upgrading to version 4.1.4 resolves this issue. The vendor has confirmed the flaw.
CVE-2025-11276
🔵 Low
CVE-2025-11276: Security flaw in Rebuild component (Comment/Guestbook)
A security flaw in Rebuild up to 4.1.3 allows cross site scripting via Comment/Guestbook. Upgrade to version 4.1.4 to fix this.
CVE ID
CVE-2025-11276
CVSS Score
3.5
Vendor
unknown
Published
Oct 05
Vulnerability Details
- CVE ID
- CVE-2025-11276
- Severity
- Low
- CVSS v3 Score
- 3.5 / 10.0
- Affected Vendor
- unknown
- Publication Date
- October 05, 2025
External Resources
Need Help?
Protect your infrastructure with our comprehensive security scanning tools.
Explore Security Scanners