CVE-2025-2896 – IBM Planning Analytics Cross-Site Scripting Vulnerability

June 1, 2025

CVE ID : CVE-2025-2896

Published : June 1, 2025, 12:15 p.m. | 15 hours, 5 minutes ago

Description : IBM Planning Analytics Local 2.0 and 2.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Severity: 4.8 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-33004 – IBM Planning Analytics Local File Deletion Vulnerability

Next Article CVE-2025-25044 – IBM Planning Analytics Cross-Site Scripting Vulnerability

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

In MCP era API discoverability is now more important than ever

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Reddit wants to sue Anthropic for stealing its data, but the Claude AI manufacturers vow to “defend ourselves vigorously”

Satya Nadella says Microsoft makes money every time you use ChatGPT: “Every day that ChatGPT succeeds is a fantastic day”

Multiple reports suggest a Persona 4 Remake from Atlus will be announced during the Xbox Games Showcase

TC39 advances numerous proposals at latest meeting

TC39 advances numerous proposals at latest meeting

TypeBridge – zero ceremony, compile time rpc for client and server com

Simplify Cloud-Native Development with Quarkus Extensions

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Reddit wants to sue Anthropic for stealing its data, but the Claude AI manufacturers vow to “defend ourselves vigorously”

Satya Nadella says Microsoft makes money every time you use ChatGPT: “Every day that ChatGPT succeeds is a fantastic day”

CVE-2025-2896 – IBM Planning Analytics Cross-Site Scripting Vulnerability

Leadership, Trust, and Cyber Hygiene: NCSC’s Guide to Security Culture in Action

Critical Fortinet flaws now exploited in Qilin ransomware attacks

NVIDIA AI Unveils Fugatto: A 2.5 Billion Parameter Audio Model that Generates Music, Voice, and Sound from Text and Audio Input

CVE-2025-47692 – ContentStudio Missing Authorization Vulnerability

I can’t believe I’m enjoying Call of Duty: Warzone’s new weed-themed limited time game mode this much

CVE-2018-25112 – Siemens SIMATIC Denial of Service

Skywings Marketing – Best SEO Company in Laxmi Nagar, Delhi for Digital Success

Schleswig-Holstein: il primo stato tedesco a migrare 30.000 computer su LibreOffice e Linux

Ransomware Extortion Drops to $813.5M in 2024, Down from $1.25B in 2023

What Is a Fractional CMO, and Is It the Right Choice for You?

CVE-2025-2896 – IBM Planning Analytics Cross-Site Scripting Vulnerability

Related Posts