CVE-2025-58070

Pleasanter contains a stored cross-site scripting vulnerability in Preview for Attachments, which allows an attacker to execute an arbitrary script in a logged-in user’s web browser.

More information : https://jvn.jp/en/jp/JVN20611740/