CVE-2025-62940

CVE-2025-62940 is a Stored Cross-Site Scripting (XSS) vulnerability in the WordPress Blox Lite plugin (versions up to and including 1.2.8). The issue arises from improper input neutralization during web page generation, enabling stored XSS via Blox Lite’s stored content. All connected sources des...

WordPress Blox Lite plugin <= 1.2.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Blox Lite versions = 1.2.8...