CVE Catalog
CVE-2025-68851
HighCVSS 7.1Exploitation Probability (EPSS)
Low risk0.19%
8th percentile - higher than 8% of all known CVEs
Summary
There is an unauthenticated Cross Site Scripting (XSS) vulnerability in Okay Toolkit versions <= 2.3. An attacker can exploit this flaw to inject malicious scripts.
Risk Assessment
This vulnerability may lead to user data theft and session hijacking, posing a serious threat to the application's security and its users.
Recommendation
It is recommended to update Okay Toolkit to the latest version to mitigate this vulnerability and conduct a security audit of the application.
Original NVD description (English source)
Unauthenticated Cross Site Scripting (XSS) in Okay Toolkit <= 2.3 versions.

