CVE-2025-58964 WordPress Enzy theme < 1.6.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in skygroup Enzy enzy allows Reflected XSS.This issue affects Enzy: from n/a through 1.6.4...

CVE-2025-58964

CVE-2025-58964 affects the WordPress Theme Enzy (Enzy) prior to version 1.6.4, with a Reflected Cross-Site Scripting (XSS) flaw caused by improper input neutralization during web page generation. Public references from NVD/Red Hat/CVE records indicate the fix is to upgrade to Enzy 1.6.4 or later....

WordPress Enzy theme < 1.6.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Enzy versions 1.6.4...