Severity: important Affected versions:
- Apache OFBiz before 24.09.03 Description: Reflected cross-site scripting vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 24.09.03. Users are recommended to upgrade to version 24.09.03, which fixes the issue. Credit: RedHive Team ([email protected]) https://hive.red/en/ (finder) References: https://issues.apache.org/jira/browse/OFBIZ-13295 https://ofbiz.apache.org/download.html https://ofbiz.apache.org/security.html https://ofbiz.apache.org/release-notes-24.09.03.html https://ofbiz.apache.org/ https://www.cve.org/CVERecord?id=CVE-2025-61623
