QwikSec

Security Database

CVE

CWE

Training

CVE-2025-52558

Published: Jun 23, 2025

Modified: Jun 24, 2025

PUBLISHED

Description

changedetection.io is a free open source web page change detection, website watcher, restock monitor and notification service. Prior to version 0.50.4, errors in filters from website page change detection watches were not being filtered resulting in a cross-site scripting (XSS) vulnerability. This issue has been patched in version 0.50.4

Vendor	Product	Versions
dgtlmoon	changedetection.io	affected `< 0.50.4`

Weaknesses (CWE)

References

https://github.com/dgtlmoon/changedetection.io/security/advisories/GHSA-hwpg-x5hw-vpv9

x_refsource_CONFIRM

https://github.com/dgtlmoon/changedetection.io/commit/3d5a544ea674cfce517adcd498877a8d760d0931

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.