XSS in Sanoma Clickedu
CVE-2025-41070
Reflected Cross-site Scripting (XSS) vulnerability in Sanoma's Clickedu. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL in '/students/carpetes_varies.php'. This vuln…
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.001 (17.3th percentile) — read the EPSS interpretation.
Affected products
- Sanoma Clickedu — versions All versions