DELMIA Factory Resource Manager Stored XSS Vulnerability (CVE-2025-10553)
A stored cross-site scripting (XSS) vulnerability in DELMIA Factory Resource Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x (CVE-2025-10553) allows attackers to execute arbitrary script code within a user's browser session.
A stored cross-site scripting (XSS) vulnerability has been identified in DELMIA Factory Resource Manager, affecting versions from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x. This vulnerability, assigned CVE-2025-10553, allows an attacker to inject malicious JavaScript code into the application. When a user interacts with the affected component, the injected script executes within their browser, potentially leading to session hijacking, sensitive data theft, or defacement of…
Detection coverage 2
Detect DELMIA XSS Attempt via HTTP Request
highDetects potential attempts to exploit the DELMIA Factory Resource Manager XSS vulnerability (CVE-2025-10553) by looking for common XSS payloads in HTTP requests.
Detect DELMIA XSS via JavaScript keywords in URI
highDetects potential attempts to exploit the DELMIA Factory Resource Manager XSS vulnerability (CVE-2025-10553) by looking for javascript scheme in HTTP requests.
Detection queries are kept inside the platform. Get full rules →