Home > Vulnerability Database > CVE-2025-61583

Mend.io Vulnerability Database

CVE-2025-61583

Good to know:

Date: October 1, 2025

TS3 Manager is modern web interface for maintaining Teamspeak3 servers. A reflected cross-site scripting vulnerability has been identified in versions 2.2.1 and earlier. The vulnerability exists in the error handling mechanism of the login page, where malicious scripts embedded in server hostnames are executed in the victim's browser context without proper sanitization. This issue is fixed in version 2.2.2.

Severity Score

4.3

Related Resources (4)

Url: https://github.com/joni1802/ts3-manager/security/advisories/GHSA-qw6j-37r6-m93g

Url: https://github.com/joni1802/ts3-manager/commit/3a069915f97a6f5dae1fe0b2e32aa11a69d83b5e

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-61583

Url: https://www.mend.io/vulnerability-database/CVE-2025-61583

Severity Score

4.3

Weakness Type (CWE)

Improper Input Validation

CWE-20

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)

CWE-80

Top Fix

Upgrade Version

Upgrade to version https://github.com/joni1802/ts3-manager.git - v2.2.2

Learn More

CVSS v3.1

Base Score:	4.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2025-61583

Good to know:

Date: October 1, 2025

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?