QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2026-25073

Back to search

CVE-2026-25073

Published: Mar 7, 2026

Modified: May 11, 2026

PUBLISHED

Description

XikeStor SKS8310-8X Network Switch firmware versions 1.04.B07 and prior contain a stored cross-site scripting vulnerability that allows authenticated attackers to inject arbitrary script content through the System Name field. Attackers can inject malicious scripts that execute in a victim's browser when the stored value is viewed due to improper output encoding.

VendorProductVersions

Anhui Seeker Electronic Technology Co., LTD.

XikeStor SKS8310-8X

affected
0 - <= 1.04.B07

Weaknesses (CWE)

CWE-79

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now