Vulnerabilities and security researches foropal-service opal-service

Nov 11, 2025

CVE, Research URL: CVE-2025-62913
Home page URL: Security reports for Opal Service
Application: Opal Service
Date: Oct 27, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpopal Opal Service opal-service allows Stored XSS.This issue affects Opal Service: from n/a through <= 1.9.1.
Affected versions: max 1.9.1.
Status: vulnerable