CVE-2025-62989
CVE-2025-62989 discusses an Improper Neutralization of Input During Web Page Generation (Stored XSS) in the WordPress plugin Cooked . Affected: Cooked versions from unspecified base up to a maximum of 1.11.3 . Root cause: input is not properly neutralized during web page generation, enabling stor...