{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata — refreshed continuously.","feed_url":"https://feed.craftedsignal.io/tags/cve-2025-10551/","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cves":[{"cvss":8.7,"id":"CVE-2025-10551"}],"_cs_exploited":false,"_cs_products":[],"_cs_severities":["high"],"_cs_tags":["xss","cve-2025-10551","enovia"],"_cs_type":"advisory","_cs_vendors":[],"content_html":"\u003cp\u003eCVE-2025-10551 is a stored XSS vulnerability affecting the Document Management feature within ENOVIA Collaborative Industry Innovator. This vulnerability exists in versions from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x. A successful exploit allows an attacker to inject malicious JavaScript code into the application, which is then executed within the browser of any user who interacts with the compromised data.  This poses a significant risk to data confidentiality and…\u003c/p\u003e\n","date_modified":"2026-03-31T09:16:21Z","date_published":"2026-03-31T09:16:21Z","id":"/briefs/2026-03-enovia-xss/","summary":"A stored cross-site scripting (XSS) vulnerability in ENOVIA Collaborative Industry Innovator allows an attacker to execute arbitrary script code in a user's browser session by injecting malicious code into document management functions.","title":"ENOVIA Collaborative Industry Innovator Stored XSS Vulnerability (CVE-2025-10551)","url":"https://feed.craftedsignal.io/briefs/2026-03-enovia-xss/"}],"language":"en","title":"CraftedSignal Threat Feed — Cve-2025-10551","version":"https://jsonfeed.org/version/1.1"}