Cross-site Scripting in NPS Computy by Calliko

CVE-2025-67984

What is CVE-2025-67984?

A Cross-site Scripting (XSS) vulnerability has been identified in NPS Computy, a product offered by Calliko, allowing attackers to inject malicious scripts into web pages viewed by users. This flaw, which occurs due to improper neutralization of input during web page generation, exposes users to potential exploitation, especially when versions up to 2.8.2 are in use. It is crucial for organizations using NPS Computy to implement updates and security measures to protect against this risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References