CVE-2025-40902 — A Stored HTML Injection vulnerability was discovered in the Users functionality due to improper validation of an input parameter. An authenticated user with administrative privileges can create a mali — CVE Database · The Intelligence Room