CVE-2025-27321

Summary

CVE-2025-27321 is a Cross-Site Request Forgery (CSRF) vulnerability discovered in Blighty Blightly Explorer. This issue enables an attacker to execute Stored Cross-Site Scripting (XSS) attacks on unsuspecting users. The vulnerability exists in Blighty Explorer versions from n/a to 2.3.0. An attacker can exploit this vulnerability by tricking a user into clicking on a malicious link, allowing the attacker to inject and execute malicious scripts in the user's browser. Successful exploitation of this vulnerability can lead to significant security risks, including data theft, session hijacking, and unauthorized account access. Users are advised to update their Blighty Explorer software to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.