MEDIUM
Syncfusion
CVE published 2026-03-20
CVE-2025-63260
CVE-2025-63260 is a Cross Site Scripting (XSS) vulnerability in SyncFusion 30.1.37. The vulnerability exists in the Document-Editor reply to comment field and Chat-UI Chat message. The Common Vulnerability Scoring System (CVSS) score for this vulnerability is 5.4, indicating a Medium severity level. This vulnerability requires user interaction and can result in limited confidentiality and integrity impact [truncated]