XSS in Eventobot

CVE-2025-40638

A reflected Cross-Site Scripting (XSS) vulnerability has been found in Eventobot. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending him/her a malicious URL using the 'name' parameter in…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.000 (2.1th percentile) — read the EPSS interpretation.