Cross-site Scripting Vulnerability in Aida Computer's Hotel Guest Hotspot
CVE-2025-4763

5.5MEDIUM

Key Information:

Vendor: Aida Computer Information Technology Inc.
Status: Hotel Guest Hotspot
Vendor: CVE Published:; 22 January 2026

🔔 Create Aida Computer Information Technology Inc. Vulnerability Alert

What is CVE-2025-4763?

Aida Computer Information Technology Inc.'s Hotel Guest Hotspot contains a vulnerability that allows attackers to exploit improper input neutralization during web page generation. This leads to reflected cross-site scripting (XSS), whereby malicious scripts can be injected into trustworthy web applications, potentially compromising session data and user authentication. The vulnerability was not acknowledged by the vendor after they were contacted about its potential risks.

Affected Version(s)

Hotel Guest Hotspot 0 <= 22012026

References

https://www.usom.gov.tr/bildirim/tr-26-0001

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 22, 2026
Vulnerability Reserved
May 15, 2025

Credit

Sevban DÖNMEZ

CVE-2025-4763 Data

JSON