What is CVE-2025-25363?

An authenticated stored cross-site scripting (XSS) vulnerability in The Plugin People Enterprise Mail Handler for Jira Data Center (JEMH) before v4.1.69-dc allows attackers with Administrator privileges to execute arbitrary Javascript in context of a user's browser via injecting a crafted payload into the HTML field of a template.

What is the severity of CVE-2025-25363?

CVE-2025-25363 has a CVSS v3 score of 6.5, which is classified as Medium severity.

Is there an exploit available for CVE-2025-25363?

No known public exploits are currently available for CVE-2025-25363.

Is there a patch available for CVE-2025-25363?

No official patches have been released yet for CVE-2025-25363. Consider implementing workarounds or mitigations.

CVE-2025-25363 - CVE Details, Severity, and Analysis

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001

Vendor	Product
Thepluginpeople	Enterprise Mail Handler

CVE-2025-25363 - CVE Details, Severity, and Analysis | Strobes VI