XSS in The-scratch-channel The-scratch-channel.github.io

CVE-2025-53904

The Scratch Channel is a news website that is under development as of time of this writing. The file `/api/admin.js` contains code that could make the website vulnerable to cross-site scripting. No known patches exist as of time of publica…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.003 (24.4th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References