CVE-2025-61931

Pleasanter contains a stored cross-site scripting vulnerability in Body, Description and Comments, which allows an attacker to execute an arbitrary script in a logged-in user’s web browser.

More information : https://jvn.jp/en/jp/JVN20611740/