{"id":"CVE-2025-64710","summary":"Bitplatform Boilerplate has cross-site scripting vulnerability","details":"Bitplatform Boilerplate is a Visual studio and .NET project template. Versions prior to 9.11.3 are affected by a cross-site scripting (XSS) vulnerability in the WebInteropApp/WebAppInterop, potentially allowing attackers to inject malicious scripts that compromise the security and integrity of web applications. Applications based on this Bitplatform Boilerplate might also be vulnerable. Version 9.11.3 fixes the issue.","aliases":["GHSA-rv95-xj37-7c3w"],"modified":"2026-04-02T13:01:19.346514Z","published":"2025-11-13T01:40:55.653Z","database_specific":{"cna_assigner":"GitHub_M","cwe_ids":["CWE-79"],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/64xxx/CVE-2025-64710.json"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/64xxx/CVE-2025-64710.json"},{"type":"ADVISORY","url":"https://github.com/bitfoundation/bitplatform/security/advisories/GHSA-rv95-xj37-7c3w"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-64710"},{"type":"FIX","url":"https://github.com/bitfoundation/bitplatform/commit/4700894ab90ed3a94cbfa21ebea3c0b5de87d457"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/bitfoundation/bitplatform","events":[{"introduced":"0"},{"fixed":"4b1645cbde3a725dab29e8c383aa8c29d12ecc70"}]}],"versions":["v-2.0.0-pre-00","v-2.0.0-pre-01","v-2.0.0-pre-02","v-2.0.0-pre-03","v-2.0.0-pre-04","v-2.0.0-pre-05","v-2.0.0-pre-06","v-2.0.0-pre-07","v-2.0.0-pre-08","v-2.0.0-pre-09","v-2.0.0-pre-10","v-2.0.0-pre-11","v-2.0.0-pre-12","v-2.0.0-pre-14","v-3.0.0-pre-01","v-3.0.0-pre-02","v-3.0.0-pre-03","v-3.0.0-pre-04","v-3.0.0-pre-05","v-3.0.0-pre-06","v-3.0.0-pre-07","v-3.0.0-pre-08","v-3.0.0-pre-09","v-3.1.0-pre-01","v-3.1.0-pre-02","v-3.1.0-pre-03","v-3.1.0-pre-04","v-3.1.0-pre-05","v-3.1.0-pre-06","v-3.1.0-pre-07","v-4.1.0-pre-01","v-4.2.0-pre-01","v-4.2.0-pre-02","v-4.2.0-pre-03","v-4.2.0-pre-04","v-4.2.0-pre-05","v-4.2.0-pre-06","v-4.2.0-pre-07","v-4.3.2-pre-01","v-4.3.2-pre-02","v-4.3.2-pre-03","v-4.3.2-pre-04","v-4.4.0-pre-01","v-4.4.1-pre-01","v-4.5.0-pre-01","v-4.6.0-pre-01","v-4.7.0-pre-01","v-4.7.0-pre-02","v-4.7.0-pre-03","v-4.7.0-pre-04","v-4.8.0-pre-01","v-4.8.0-pre-02","v-4.9.0-pre-01","v-4.9.0-pre-02","v-4.9.1-pre-01","v-4.9.1-pre-02","v-4.9.10","v-4.9.10-pre-01","v-4.9.10-pre-02","v-4.9.10-pre-03","v-4.9.10-pre-04","v-4.9.10-pre-05","v-4.9.10-pre-06","v-4.9.10-pre-07","v-4.9.11-pre-01","v-4.9.11-pre-02","v-4.9.2-pre-01","v-4.9.3-pre-01","v-4.9.3-pre-02","v-4.9.3-pre-03","v-4.9.3-pre-04","v-4.9.4-pre-01","v-4.9.4-pre-02","v-4.9.5-pre-01","v-4.9.5-pre-02","v-4.9.5-pre-03","v-4.9.6","v-4.9.6-pre-01","v-4.9.6-pre-02","v-4.9.6-pre-03","v-4.9.6-pre-04","v-4.9.6-pre-05","v-4.9.7-pre-01","v-4.9.8-pre-01","v-4.9.8-pre-02","v-4.9.9","v-4.9.9-pre-01","v-4.9.9-pre-02","v-4.9.9-pre-03","v-5.0.0-pre-01","v-5.0.0-pre-02","v-5.1.0","v-5.1.0-pre-01","v-5.1.0-pre-02","v-5.1.0-pre-03","v-5.1.0-pre-04","v-5.1.0-pre-05","v-5.1.0-pre-06","v-5.1.0-pre-07","v-5.1.0-pre-08","v-5.1.0-pre-09","v-5.1.0-pre-10","v-5.1.0-pre-11","v-5.1.0-pre-12","v-5.1.0-pre-13","v-5.1.0-pre-14","v-5.1.0-pre-15","v-5.1.0-pre-16","v-5.2.0","v-5.2.0-pre-01","v-5.2.0-pre-02","v-5.2.0-pre-03","v-5.2.0-pre-04","v-5.2.0-pre-05","v-5.3.0","v-5.3.0-pre-01","v-5.3.0-pre-02","v-5.3.0-pre-03","v-5.3.0-pre-04","v-5.3.0-pre-05","v-5.3.0-pre-06","v-5.3.0-pre-07","v-5.4.0","v-5.4.0-pre-01","v-5.4.0-pre-02","v-5.4.0-pre-03","v-5.4.0-pre-04","v-5.4.0-pre-05","v-5.5.0","v-5.5.0-pre-01","v-5.5.0-pre-02","v-5.5.0-pre-03","v-5.5.0-pre-04","v-5.5.0-pre-05","v-5.5.0-pre-06","v-5.5.0-pre-07","v-5.5.0-pre-08","v-5.6.0","v-5.6.0-pre-01","v-5.6.0-pre-02","v-5.6.0-pre-03","v-5.6.1","v-5.6.1-pre-01","v-6.0.0","v-6.0.0-pre-01","v-6.0.0-pre-02","v-6.0.0-pre-03","v-6.0.0-pre-04","v-6.0.0-pre-05","v-6.1.0","v-6.1.0-pre-01","v-6.1.0-pre-02","v-6.1.0-pre-03","v-7.0.0","v-7.0.0-pre-01","v-7.0.0-pre-02","v-7.1.0","v-7.1.0-pre-01","v-7.1.0-pre-02","v-7.1.0-pre-03","v-7.1.0-pre-04","v-7.1.0-pre-05","v-7.2.0-pre-01","v-7.2.0-pre-02","v-7.3.0-pre-01","v-8.0.0-pre-01","v-8.0.1","v-8.1.0","v-8.1.0-pre-01","v-8.1.0-pre-02","v-8.1.0-pre-03","v-8.10.0","v-8.10.0-pre-01","v-8.10.0-pre-02","v-8.10.0-pre-03","v-8.10.0-pre-04","v-8.10.0-pre-05","v-8.11.0","v-8.11.0-pre-01","v-8.11.0-pre-02","v-8.11.0-pre-03","v-8.11.0-pre-04","v-8.11.0-pre-05","v-8.11.0-pre-06","v-8.11.0-pre-07","v-8.11.0-pre-08","v-8.11.0-pre-09","v-8.11.1-pre-01","v-8.11.1-pre-02","v-8.11.1-pre-03","v-8.11.1-pre-04","v-8.12.0","v-8.12.0-pre-01","v-8.12.0-pre-02","v-8.12.0-pre-03","v-8.12.0-pre-04","v-8.12.0-pre-05","v-8.12.0-pre-06","v-8.12.0-pre-07","v-8.12.0-pre-08","v-8.12.0-pre-09","v-8.12.0-pre-10","v-8.12.0-pre-11","v-8.12.0-pre-12","v-8.12.0-pre-13","v-8.12.0-pre-14","v-8.12.0-pre-15","v-8.2.0","v-8.2.0-pre-01","v-8.2.0-pre-02","v-8.2.0-pre-03","v-8.2.0-pre-04","v-8.2.0-pre-05","v-8.3.0","v-8.3.0-pre-01","v-8.3.0-pre-02","v-8.3.0-pre-03","v-8.4.0","v-8.4.0-pre-01","v-8.5.0","v-8.5.0-pre-01","v-8.5.0-pre-02","v-8.6.0","v-8.6.0-pre-01","v-8.6.0-pre-02","v-8.6.0-pre-03","v-8.7.0","v-8.7.0-pre-01","v-8.7.0-pre-02","v-8.7.0-pre-03","v-8.7.0-pre-04","v-8.7.0-pre-05","v-8.7.1","v-8.7.2","v-8.7.2-pre-01","v-8.7.2-pre-02","v-8.7.3","v-8.7.3-pre-01","v-8.7.3-pre-02","v-8.7.4","v-8.7.5","v-8.7.5-pre-01","v-8.7.5-pre-02","v-8.7.5-pre-03","v-8.7.5-pre-04","v-8.7.6","v-8.7.6-pre-01","v-8.7.6-pre-02","v-8.7.6-pre-03","v-8.7.6-pre-04","v-8.7.6-pre-05","v-8.7.6-pre-06","v-8.7.6-pre-07","v-8.7.6-pre-08","v-8.8.0","v-8.8.0-pre-01","v-8.8.0-pre-02","v-8.8.0-pre-03","v-8.8.0-pre-04","v-8.8.1","v-8.8.1-pre-01","v-8.8.1-pre-02","v-8.8.2-pre-01","v-8.8.2-pre-02","v-8.8.2-pre-03","v-8.8.2-pre-04","v-8.8.2-pre-05","v-8.9.0","v-8.9.0-pre-01","v-8.9.0-pre-02","v-8.9.0-pre-03","v-8.9.0-pre-04","v-9.0.0","v-9.0.0-pre-01","v-9.0.0-pre-02","v-9.0.1","v-9.1.0","v-9.1.0-pre-01","v-9.1.0-pre-02","v-9.1.0-pre-03","v-9.1.0-pre-04","v-9.1.0-pre-05","v-9.1.0-pre-06","v-9.1.0-pre-07","v-9.1.0-pre-08","v-9.1.0-pre-09","v-9.1.0-pre-10","v-9.1.0-pre-11","v-9.1.0-pre-12","v-9.1.0-pre-13","v-9.1.1","v-9.1.1-pre-01","v-9.1.2","v-9.1.2-pre-01","v-9.10.0","v-9.10.0-pre-01","v-9.11.0","v-9.11.0-pre-01","v-9.11.0-pre-02","v-9.11.0-pre-03","v-9.11.0-pre-04","v-9.11.1-pre-01","v-9.11.2-pre-01","v-9.11.2-pre-02","v-9.11.3-pre-01","v-9.11.3-pre-02","v-9.2.0","v-9.2.0-pre-01","v-9.2.0-pre-02","v-9.2.0-pre-03","v-9.2.0-pre-04","v-9.2.1","v-9.2.1-pre-01","v-9.2.1-pre-02","v-9.3.0","v-9.3.0-pre-01","v-9.3.1-pre-01","v-9.3.1-pre-02","v-9.3.1-pre-03","v-9.3.1-pre-04","v-9.3.1-pre-05","v-9.4.0","v-9.4.0-pre-01","v-9.4.0-pre-02","v-9.4.0-pre-03","v-9.4.0-pre-04","v-9.4.0-pre-05","v-9.4.1","v-9.4.1-pre-01","v-9.4.2-pre-01","v-9.4.2-pre-02","v-9.4.2-pre-03","v-9.4.2-pre-04","v-9.5.0","v-9.5.0-pre-01","v-9.5.0-pre-02","v-9.5.0-pre-03","v-9.5.0-pre-04","v-9.5.0-pre-05","v-9.5.1","v-9.5.1-pre-01","v-9.5.1-pre-02","v-9.5.1-pre-03","v-9.5.1-pre-04","v-9.6.0","v-9.6.0-pre-01","v-9.6.0-pre-02","v-9.6.0-pre-03","v-9.6.0-pre-04","v-9.6.0-pre-05","v-9.6.0-pre-06","v-9.6.0-pre-07","v-9.6.0-pre-08","v-9.6.0-pre-09","v-9.6.0-pre-10","v-9.6.0-pre-11","v-9.6.0-pre-12","v-9.6.0-pre-13","v-9.6.0-pre-14","v-9.6.1","v-9.6.1-pre-01","v-9.6.1-pre-02","v-9.7.0","v-9.7.0-pre-01","v-9.7.0-pre-02","v-9.7.0-pre-03","v-9.7.0-pre-04","v-9.7.0-pre-05","v-9.7.0-pre-06","v-9.7.0-pre-07","v-9.7.0-pre-08","v-9.7.0-pre-09","v-9.7.0-pre-10","v-9.7.0-pre-11","v-9.7.0-pre-12","v-9.7.1","v-9.7.1-pre-01","v-9.7.1-pre-02","v-9.7.1-pre-03","v-9.7.2","v-9.7.3","v-9.7.3-pre-01","v-9.7.3-pre-02","v-9.7.3-pre-03","v-9.7.3-pre-04","v-9.7.3-pre-05","v-9.7.4","v-9.7.4-pre-01","v-9.7.4-pre-02","v-9.7.4-pre-03","v-9.7.4-pre-04","v-9.8.0","v-9.8.0-pre-01","v-9.8.0-pre-02","v-9.8.0-pre-03","v-9.8.0-pre-04","v-9.8.0-pre-05","v-9.8.0-pre-06","v-9.8.0-pre-07","v-9.8.0-pre-08","v-9.9.0","v-9.9.0-pre-01","v-9.9.0-pre-02","v-9.9.0-pre-03","v-9.9.1-pre-01","v-9.9.2"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-64710.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V4","score":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N"}]}