CVE-2025-60948 is a stored cross-site scripting (XSS) vulnerability classified under CWE-79, affecting Census CSWeb version 8.0.1. The vulnerability arises from improper neutralization of user-supplied input during web page generation, allowing malicious JavaScript code to be stored in the application’s data fields. An attacker with valid authentication credentials can inject this malicious script into input fields that are later rendered without proper sanitization or encoding. When other users access the affected pages, the malicious script executes in their browsers within the security context of the vulnerable application, potentially leading to session hijacking, credential theft, or unauthorized actions performed on behalf of the victim. The vulnerability requires the attacker to be authenticated and relies on user interaction to trigger the malicious payload, which limits its exploitation scope. The issue was identified and fixed in the 8.1.0 alpha release of Census CSWeb. The CVSS v3.1 base score of 4.6 reflects a medium severity, considering the attack vector is network-based, the attack complexity is low, privileges required are low (authenticated user), and user interaction is required. Confidentiality and integrity impacts are low, with no availability impact. No known exploits are reported in the wild as of the publication date.

The primary impact of this vulnerability is the potential compromise of user confidentiality and integrity within organizations using Census CSWeb 8.0.1. Successful exploitation could allow attackers to execute arbitrary JavaScript in the context of other users, leading to session hijacking, theft of sensitive information, or unauthorized actions performed with victim privileges. While the vulnerability does not affect system availability, the breach of confidentiality and integrity can undermine trust in the application and lead to data leakage or unauthorized data manipulation. Since exploitation requires authentication, the risk is limited to environments where attackers can obtain valid credentials, either through phishing, credential reuse, or insider threats. Organizations with many users or high-value data accessible through CSWeb are at greater risk. The lack of known exploits in the wild reduces immediate threat but does not eliminate the risk of future attacks, especially if the vulnerability becomes publicly known or weaponized.

Organizations should upgrade Census CSWeb to version 8.1.0 or later, where the vulnerability is fixed. Until an upgrade is possible, implement strict input validation and output encoding on all user-supplied fields to prevent script injection. Employ Content Security Policy (CSP) headers to restrict the execution of unauthorized scripts in browsers. Monitor user activity logs for suspicious behavior indicative of attempted exploitation. Enforce strong authentication controls and consider multi-factor authentication to reduce the risk of credential compromise. Conduct regular security training to reduce phishing and social engineering risks that could lead to credential theft. Additionally, review and sanitize existing stored data fields to remove any malicious scripts that may have been injected prior to patching. Finally, limit user privileges to the minimum necessary to reduce the impact of a compromised account.