CVE-2025-11308 🔵 Low

CVE-2025-11308: Cross-Site Scripting in Vanderlande Baggage 360

A vulnerability in Vanderlande Baggage 360 7.0.0 allows for cross-site scripting through manipulation of the /api-addons/v1/messages file. The exploit is publicly available.

CVE ID

CVE-2025-11308

CVSS Score

3.5

Vendor

unknown

Published

Oct 05

A vulnerability was identified in Vanderlande Baggage 360 7.0.0 affecting the processing of the file /api-addons/v1/messages. Manipulation of the argument Message leads to cross-site scripting, which can be exploited remotely. The vendor was informed about this issue but did not respond.

Vulnerability Details

CVE ID: CVE-2025-11308
Severity: Low
CVSS v3 Score: 3.5 / 10.0
Affected Vendor: unknown
Publication Date: October 05, 2025

External Resources

NIST NVD Database
MITRE CVE

Need Help?

Protect your infrastructure with our comprehensive security scanning tools.

Explore Security Scanners

Back to CVE Database