Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Cross-site scripting vulnerability in Lectora course navigation
Malware and Vulnerabilities
September 22, 2025
cert
A cross-site scripting (XSS) vulnerability has been identified in Lectora Desktop versions 21.0–21.3 and Lectora Online versions 7.1.6 and older. The issue arises when courses are published with SPP enabled and Web Accessibility disabled.
Read More
CVE-2025-9125
Lectora Desktop
Publisher
Previous
Canada dismantles TradeOgre exchange, seizes $40 millio ...
Incident Response, Learnings
Next
SonicWall Urges Urgent Credential Reset After Backup Fi ...
Breaches and Incidents
/https://cyware-ent.s3.amazonaws.com/public_image/bleepingcomputer7bca1033-5be4-47eb-a272-92fa942bdbf9.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/f2c0_shutterstock_1743383135.jpg)
