CVE-2025-28380
EUVD-2025-1828013.06.2025, 14:15
A cross-site scripting (XSS) vulnerability in OpenC3 COSMOS before v6.0.2 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the URL parameter.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| openc3 | cosmos | 6.0.0 |
𝑥
= Vulnerable software versions
References