5 matches found
CVE-2025-23998
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in raratheme UltraLight the-ultralight allows Reflected XSS.This issue affects UltraLight: from n/a through = 1.2...
CVE-2025-23998
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in raratheme UltraLight the-ultralight allows Reflected XSS.This issue affects UltraLight: from n/a through = 1.2...
CVE-2025-23998
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rara Theme UltraLight allows Reflected XSS. This issue affects UltraLight: from n/a through 1.2...
CVE-2025-23998
CVE-2025-23998 is a Reflected XSS in the WordPress theme UltraLight (UltraLight: n/a through 1.2). Affected component is the theme’s web page generation input handling; exploitation likely requires user interaction as per CVSS. There are connected records (Red Hat and ENISA entries) echoing the s...
PT-2025-5255
Name of the Vulnerable Software and Affected Versions Rara Theme UltraLight versions 1.2 and earlier Description The issue is related to improper neutralization of input during web page generation, which allows for reflected cross-site scripting XSS. This means an attacker can inject malicious...