XSS in Zoo-project
CVE-2025-25190
The ZOO-Project is an open source processing platform. The ZOO-Project Web Processing Service (WPS) Server contains a Cross-Site Scripting (XSS) vulnerability in its EchoProcess service prior to commit 7a5ae1a. The vulnerability exists bec…
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.005 (39.6th percentile) — read the EPSS interpretation.
Affected products
- Zoo-project — versions < 7a5ae1a
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)
- security-advisories@github.com (x_refsource_MISC)