[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2025-23366":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T20:55:33.689Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":44,"aliases":45,"duplicate_of":9,"upstream":47,"downstream":48,"duplicates":55,"related":56,"reserved_at":9,"published_at":57,"modified_at":58,"state":59,"summary":60,"references_raw":69,"kevs":110,"epss":111,"epss_history":114,"metrics":384,"affected":398},"CVE-2025-23366","A flaw was found in the HAL Console in the Wildfly component, which does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output used as a web page that is served to other users. The attacker must be authenticated as a user that belongs to management groups “SuperUser”, “Admin”, or “Maintainer”.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-79","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.","weakness","Stable","Base","High",[20,24,28,32,36,40],{"id":21,"name":22,"techniques":23},"CAPEC-209","XSS Using MIME Type Mismatch",[],{"id":25,"name":26,"techniques":27},"CAPEC-588","DOM-Based XSS",[],{"id":29,"name":30,"techniques":31},"CAPEC-591","Reflected XSS",[],{"id":33,"name":34,"techniques":35},"CAPEC-592","Stored XSS",[],{"id":37,"name":38,"techniques":39},"CAPEC-63","Cross-Site Scripting (XSS)",[],{"id":41,"name":42,"techniques":43},"CAPEC-85","AJAX Footprinting",[],[],[46],"GHSA-jhvj-f397-8w6q",[],[49,51,53],{"_key":50},"RHSA-2025:10924",{"_key":52},"RHSA-2025:10925",{"_key":54},"RHSA-2025:10926",[],[],"2025-01-14T17:41:43.092Z","2026-06-01T17:21:24.952Z","Modified",{"cisa_kev":61,"cisa_ransomware":61,"cisa_vendor":9,"epss_severity":62,"epss_score":63,"severity":64,"severity_score":65,"severity_version":66,"severity_source":67,"severity_vector":68,"severity_status":59},false,"low",0.00446,"medium",6.5,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",[70,80,85,89,94,98,102,106],{"url":71,"sources":72,"tags":75},"https://access.redhat.com/security/cve/CVE-2025-23366",[67,73,74],"nvd","osv_maven",[76,77,78,79],"VDB Entry","X Refsource REDHAT","Vendor Advisory","WEB",{"url":81,"sources":82,"tags":83},"https://bugzilla.redhat.com/show_bug.cgi?id=2337619",[67,73,74],[84,77,78,79],"Issue Tracking",{"url":86,"sources":87,"tags":88},"https://github.com/hal/console/security/advisories/GHSA-jhvj-f397-8w6q",[74],[79],{"url":90,"sources":91,"tags":92},"https://github.com/hal/console",[74],[93],"PACKAGE",{"url":95,"sources":96,"tags":97},"https://github.com/hal/console/releases/tag/v3.7.7",[74],[79],{"url":99,"sources":100,"tags":101},"https://access.redhat.com/errata/RHSA-2025:10924",[67,73],[78,77],{"url":103,"sources":104,"tags":105},"https://access.redhat.com/errata/RHSA-2025:10926",[67,73],[78,77],{"url":107,"sources":108,"tags":109},"https://access.redhat.com/errata/RHSA-2025:10925",[67,73],[78,77],[],{"date":112,"score":63,"percentile":113},"2026-06-05",0.63844,[115,119,122,124,127,130,133,137,140,143,146,149,152,155,158,162,165,168,171,174,177,180,183,186,189,192,195,198,201,204,207,210,213,216,219,222,225,228,231,234,237,240,243,246,249,252,255,258,261,264,267,270,273,276,278,281,283,286,289,292,295,298,301,304,307,310,313,316,319,322,325,328,331,334,337,339,342,345,348,351,354,357,360,363,366,369,372,375,378,381],{"date":116,"score":117,"percentile":118},"2025-11-04",0.00073,0.22452,{"date":120,"score":117,"percentile":121},"2025-11-05",0.22446,{"date":123,"score":117,"percentile":118},"2025-11-06",{"date":125,"score":117,"percentile":126},"2025-11-07",0.22468,{"date":128,"score":117,"percentile":129},"2025-11-08",0.22477,{"date":131,"score":117,"percentile":132},"2025-11-09",0.22428,{"date":134,"score":135,"percentile":136},"2025-11-10",0.00085,0.25348,{"date":138,"score":135,"percentile":139},"2025-11-11",0.25356,{"date":141,"score":135,"percentile":142},"2025-11-12",0.25385,{"date":144,"score":135,"percentile":145},"2025-11-13",0.25384,{"date":147,"score":135,"percentile":148},"2025-11-14",0.2538,{"date":150,"score":135,"percentile":151},"2025-11-15",0.25369,{"date":153,"score":135,"percentile":154},"2025-11-16",0.25321,{"date":156,"score":135,"percentile":157},"2025-11-17",0.25278,{"date":159,"score":160,"percentile":161},"2025-11-18",0.00506,0.63625,{"date":163,"score":160,"percentile":164},"2025-11-19",0.63638,{"date":166,"score":160,"percentile":167},"2025-11-20",0.6364,{"date":169,"score":135,"percentile":170},"2025-11-21",0.25201,{"date":172,"score":135,"percentile":173},"2025-11-22",0.25198,{"date":175,"score":135,"percentile":176},"2025-11-23",0.25147,{"date":178,"score":135,"percentile":179},"2025-11-24",0.25121,{"date":181,"score":135,"percentile":182},"2025-11-25",0.25105,{"date":184,"score":135,"percentile":185},"2025-11-26",0.25092,{"date":187,"score":135,"percentile":188},"2025-11-27",0.25091,{"date":190,"score":135,"percentile":191},"2025-11-28",0.25065,{"date":193,"score":135,"percentile":194},"2025-11-29",0.25056,{"date":196,"score":135,"percentile":197},"2025-11-30",0.25029,{"date":199,"score":135,"percentile":200},"2025-12-01",0.25069,{"date":202,"score":135,"percentile":203},"2025-12-02",0.25093,{"date":205,"score":135,"percentile":206},"2025-12-03",0.25102,{"date":208,"score":135,"percentile":209},"2025-12-04",0.25034,{"date":211,"score":135,"percentile":212},"2025-12-05",0.25087,{"date":214,"score":135,"percentile":215},"2025-12-06",0.25086,{"date":217,"score":135,"percentile":218},"2025-12-07",0.25052,{"date":220,"score":135,"percentile":221},"2025-12-08",0.25057,{"date":223,"score":135,"percentile":224},"2025-12-09",0.25109,{"date":226,"score":135,"percentile":227},"2025-12-10",0.25174,{"date":229,"score":135,"percentile":230},"2025-12-11",0.25187,{"date":232,"score":135,"percentile":233},"2025-12-12",0.25203,{"date":235,"score":135,"percentile":236},"2025-12-13",0.25205,{"date":238,"score":135,"percentile":239},"2025-12-14",0.25177,{"date":241,"score":135,"percentile":242},"2025-12-15",0.25151,{"date":244,"score":135,"percentile":245},"2025-12-16",0.25166,{"date":247,"score":135,"percentile":248},"2025-12-17",0.25242,{"date":250,"score":135,"percentile":251},"2025-12-18",0.25304,{"date":253,"score":135,"percentile":254},"2025-12-19",0.2532,{"date":256,"score":135,"percentile":257},"2025-12-20",0.2529,{"date":259,"score":135,"percentile":260},"2025-12-21",0.25241,{"date":262,"score":135,"percentile":263},"2025-12-22",0.25199,{"date":265,"score":135,"percentile":266},"2025-12-23",0.25172,{"date":268,"score":135,"percentile":269},"2025-12-24",0.2518,{"date":271,"score":135,"percentile":272},"2025-12-25",0.25257,{"date":274,"score":135,"percentile":275},"2025-12-26",0.25244,{"date":277,"score":135,"percentile":260},"2025-12-27",{"date":279,"score":135,"percentile":280},"2025-12-28",0.25115,{"date":282,"score":135,"percentile":215},"2025-12-29",{"date":284,"score":135,"percentile":285},"2025-12-30",0.25082,{"date":287,"score":135,"percentile":288},"2025-12-31",0.25143,{"date":290,"score":135,"percentile":291},"2026-01-01",0.25243,{"date":293,"score":135,"percentile":294},"2026-01-02",0.25235,{"date":296,"score":135,"percentile":297},"2026-01-03",0.25218,{"date":299,"score":135,"percentile":300},"2026-01-04",0.2512,{"date":302,"score":135,"percentile":303},"2026-01-05",0.251,{"date":305,"score":135,"percentile":306},"2026-01-06",0.25106,{"date":308,"score":135,"percentile":309},"2026-01-07",0.25135,{"date":311,"score":135,"percentile":312},"2026-01-08",0.25179,{"date":314,"score":135,"percentile":315},"2026-01-09",0.25155,{"date":317,"score":135,"percentile":318},"2026-01-10",0.25129,{"date":320,"score":135,"percentile":321},"2026-01-11",0.25107,{"date":323,"score":135,"percentile":324},"2026-01-12",0.25066,{"date":326,"score":135,"percentile":327},"2026-01-13",0.25044,{"date":329,"score":135,"percentile":330},"2026-01-14",0.25101,{"date":332,"score":135,"percentile":333},"2026-01-15",0.2509,{"date":335,"score":135,"percentile":336},"2026-01-16",0.25123,{"date":338,"score":135,"percentile":318},"2026-01-17",{"date":340,"score":135,"percentile":341},"2026-01-18",0.25104,{"date":343,"score":135,"percentile":344},"2026-01-19",0.25058,{"date":346,"score":135,"percentile":347},"2026-01-20",0.2504,{"date":349,"score":135,"percentile":350},"2026-01-21",0.24993,{"date":352,"score":135,"percentile":353},"2026-01-22",0.24978,{"date":355,"score":135,"percentile":356},"2026-01-23",0.25061,{"date":358,"score":135,"percentile":359},"2026-01-24",0.25067,{"date":361,"score":135,"percentile":362},"2026-01-25",0.24983,{"date":364,"score":135,"percentile":365},"2026-01-26",0.24891,{"date":367,"score":135,"percentile":368},"2026-01-27",0.24877,{"date":370,"score":135,"percentile":371},"2026-01-28",0.24874,{"date":373,"score":135,"percentile":374},"2026-01-29",0.24835,{"date":376,"score":135,"percentile":377},"2026-01-30",0.24821,{"date":379,"score":135,"percentile":380},"2026-01-31",0.24813,{"date":382,"score":135,"percentile":383},"2026-02-01",0.24863,[385,390,396],{"source":67,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":386,"cvss_v4_0":9},{"baseScore":65,"baseSeverity":387,"vectorString":68,"impactScore":388,"exploitabilityScore":389},"MEDIUM",8.7,3.1,{"source":73,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":391,"cvss_v4_0":9},{"baseScore":392,"baseSeverity":387,"vectorString":393,"impactScore":394,"exploitabilityScore":395},4.8,"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N",4.5,4.4,{"source":74,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":397,"cvss_v4_0":9},{"baseScore":65,"baseSeverity":9,"vectorString":68,"impactScore":388,"exploitabilityScore":389},[399,412],{"ecosystem":400,"name":401,"vendor":402,"product":403,"cpe_part":9,"purl_type":404,"purl_namespace":402,"purl_name":403,"source":9,"versions":405},"Maven","org.jboss.hal:hal-console","org.jboss.hal","hal-console","maven",[406],{"version":407,"is_range":408,"range_type":409,"version_start":9,"version_start_type":9,"version_end":410,"version_end_type":411,"fixed_in":9},"lt3_7_7_Final",true,"ecosystem","3.7.7.Final","excluding",{"ecosystem":9,"name":413,"vendor":414,"product":415,"cpe_part":416,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":417},"hal management console","redhat","hal_management_console","a",[418],{"version":419,"is_range":408,"range_type":420,"version_start":9,"version_start_type":9,"version_end":421,"version_end_type":411,"fixed_in":9},"lt3.7.7","cpe","3.7.7"]